OneDrive: Find document libraries in OneDrive search results

🚨 The Signal: OneDrive search now includes SharePoint document libraries, making shared content more discoverable. This increases the attack surface for sensitive data if permissions are not correctly managed, potentially exposing information to unauthorised users.

The Impact

All users are affected, with a heightened risk of sensitive data exposure due to increased discoverability of SharePoint libraries.

  • End users: May inadvertently access sensitive data if permissions are misconfigured.
  • Security teams: Increased risk of data leakage due to broader search scope.
  • Admins: Need to review and enforce strict permissions on SharePoint document libraries.
  • Compliance teams: Potential for non-compliance with data access policies.

The Action

  1. Review all SharePoint document library permissions to ensure least privilege is applied.
  2. Implement or refine sensitivity labels and data loss prevention (DLP) policies for SharePoint content.
  3. Educate users on responsible data sharing and the implications of broad access.
  4. Regularly audit access to sensitive SharePoint document libraries.
  5. Utilise Microsoft Purview to monitor and report on access to sensitive content.

Domain: SharePoint · Impact: high · Workload: SharePoint