this post was submitted on 10 Nov 2023
204 points (97.7% liked)
Technology
59223 readers
3211 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
The title seems dramatic, but using the Outlook client to link a third-party account is supposed to connect to those emails with the respective credentials, right?
It was interesting because the article didn't get too much into the details of it. But anything using Oauth2 like most major emails (eg Gmail) aren't impacted by this. It sounds like only the ones with user name and password are sent. Without understanding more detail it's kind of hard to be up-in-arms.
Kinda like youre saying, at some point any email app needs your credentials to get your emails. The app, necessarily, can read your emails.
The author of the article didn't do a good job explaining the issue imo. How does it "normally" work versus what Microsoft is doing?
So many articles suck these days.
Author is probably being vague because there's no real issue, but people love being recreationally angry over this kind of thing so it gets clicks.
At least the OAuth2 access is protected. That's the detail I needed to see.
That's the direct implication of the innate nature of capitalism. News publishers drive researchers and writers into mill writing which unfortunately involves reworded mimicry of the few who publish the original "investigative research" they recorded from the source. They're doing it for money too, so they aren't alloted enough time to fully investigate off they want to publish their name to juicy details first before those who can and will fully investigate it to publish a full exposé.
We expect news publishers to dramatize titles for the click-bait effect at their websites. But within a public forum platform (here), reposting the click-bait title into the community post effectively misleads forum readers because this space is personable and honest, so we expect an honest post title here. News publishers know this and exploit that in Reddit, but hopefully not here. Every time I see OPs copy-posting and running off, I have to suspect industry marketing efforts in effect, perhaps especially when OP is a bot.
I really don't want to see Lemmy become polluted with news marketing as though this platform is at all open to the same abuse as that socialist dictatorship platform we left to be here.
People like you are funny because you forget that its not "Reddit" its the people who use Reddit. Guess what group a lot of people who use Lemmy are from? This is a different platform, but it has no unique identity outside of the lower amount of content and users.
That's nearsighted. Do you wear glasses? Do they give you headaches?
It's a little worse than that. Microsoft copies your password, credentials and all your emails to their server. Future emails then also go through their servers.
If you have a business this probably constitutes a data leak.
https://news.ycombinator.com/item?id=38212453