OneDrive: Find and browse document libraries on mobile

🚨 The Signal: OneDrive iOS app now provides enhanced access to SharePoint document libraries, including search, browsing recent/favorite sites, and direct navigation. This improves mobile data accessibility but requires vigilance on existing permissions.

The Impact

All iOS OneDrive users are affected; the risk is potential over-exposure of sensitive data if SharePoint permissions are not correctly managed.

• End-users: Easier access to SharePoint libraries on mobile, increasing potential for data exposure if permissions are too broad.
• Security Team: Must ensure SharePoint permissions are least-privilege to prevent sensitive data leakage via mobile access.
• Admins: Need to review and validate existing SharePoint site and library permissions for mobile accessibility implications.

The Action

1. Review SharePoint site and library permissions for all sensitive data to ensure least-privilege access is enforced.
2. Audit existing SharePoint sharing policies to prevent unintended external or broad internal access.
3. Educate users on responsible data handling practices, especially when accessing sensitive information on mobile devices.
4. Utilize Microsoft Purview Information Protection to classify and label sensitive documents, ensuring policies apply consistently across devices.
5. Regularly review access logs for SharePoint sites and libraries to detect unusual mobile access patterns.

Domain: SharePoint · Impact: medium · Workload: OneDrive