In May 2025, the Oasis Security published an analysis that caused a stir in the cloud world: a vulnerability in OneDrive File Picker allowed third-party applications to access files for which they did not actually have access rights. Millions of users were affected, both private individuals and companies.
This is a companion discussion topic for the original entry at https://cryptomator.org/blog/2025/10/17/onedrive-security-breach