A new revelation of a Microsoft storage service behavior ( OneDrive ), will make us all think very seriously about the effects it can have on our privacy, as it threatens the "integrity" of our data.
Many of us use services cloud για να κρατήσουμε αντίγραφα ασφαλείας δεδομένων που επιθυμούμε να έχουμε πρόσβαση από παντού. Έτσι χρησιμοποιούμε λύσεις cloud-based όπως το Google Drive, το Dropbox το RapidShare, ή το Mega για να αποθηκεύουμε και να διασφαλίσουμε τα προσωπικά μας data. Unfortunately, as published the The Hacker News we can not say the same for OneDrive, the Microsoft storage service.
Microsoft does not give back the same files as we uploaded to OneDrive after modifying it during the upload process, according to Irish security researcher Seán Byrne, who published the results of his research at his blog.
Microsoft's OneDrive service secretly modifies your files.
This is not the case for any of Byrne's large cloud storage services. The researcher tested Google Docs, DropBox, and did not find any modifications or changes to the files, which means that the files stored in the cloud and the original files were exactly the same without any changes.
However, this is not the case with Microsoft's OneDrive cloud service. The researcher found that the stored files were different from the original ones. He created some PHP and HTML test files and saved them to OneDrive. When files were uploaded to Microsoft cloud, they got new code!
To control them, use a MD5summer to get the MD5 hashes of the content. So he discovered that the Checksum was different, as Microsoft uploaded and synchronized files made injection-recognizable code on some files.
The fact that Microsoft is changing files on OneDrive is not mentioned anywhere in the company, and this disclosure makes us wonder how much we can trust the company.