DigiNews

Summary

The article documents a persistent misconfiguration in Microsoft's Autodiscover that causes the IANA-reserved example.com to resolve to Sei.co.jp mail servers, potentially leaking test credentials via Outlook auto-configuration. It includes DNS verifications showing no MX/CNAME/SRV records for example.com and a sample Autodiscover API response indicating the misconfiguration existed since 2020 and persisted for years. The post references related coverage on Autodiscover security risks and emphasizes the need for validation and safer testing practices.