Exchange Server – Computer Security Articles

One of Microsoft’s Patch Tuesday fixes has flipped from “Likely to be Exploited” to “Exploitation Detected”.

Security Sophos

Observing OWASSRF Exchange Exploitation… still

March 15, 2023 admin cve-202-41082, cve-2022-41080, Exchange Server, owa, owassrf, play, proxynotshell, threat research

Credit to Author: Angela Gunn| Date: Wed, 15 Mar 2023 16:45:56 +0000

ProxyNotShell continues to make waves as November 2022 fixes fail to contain SSRF tactic

Security Sophos

Two Exchange Server vulns veer dangerously close to ProxyShell

October 3, 2022 admin Exchange Server, Featured, proxyshell, SSRF, threat research

Credit to Author: Angela Gunn| Date: Mon, 03 Oct 2022 22:03:02 +0000

A chained pair of vulnerabilities, plus PowerShell, affects the Microsoft messaging platform well in advance of Patch Tuesday; Sophos customers are protected

Microsoft Security

Analyzing attacks using the Exchange vulnerabilities CVE-2022-41040 and CVE-2022-41082

September 30, 2022 admin cybersecurity, Exchange Server, microsoft, Microsoft security intelligence, Security, vulnerabilities

Credit to Author: Katie McCafferty| Date: Sat, 01 Oct 2022 04:21:00 +0000

MSTIC observed activity related to a single activity group in August 2022 that achieved initial access and compromised Exchange servers by chaining CVE-2022-41040 and CVE-2022-41082 in a small number of targeted attacks.

The post Analyzing attacks using the Exchange vulnerabilities CVE-2022-41040 and CVE-2022-41082 appeared first on Microsoft Security Blog.

Microsoft Security

Malicious OAuth applications abuse cloud email services to spread spam

September 23, 2022 admin cybersecurity, Exchange Server, malicious oauth applications, Microsoft security intelligence, spam

Credit to Author: Microsoft 365 Defender Threat Intelligence Team| Date: Thu, 22 Sep 2022 16:00:00 +0000

Microsoft discovered an attack where attackers installed a malicious OAuth application in compromised tenants and used their Exchange Online service to launch spam runs.

The post Malicious OAuth applications abuse cloud email services to spread spam appeared first on Microsoft Security Blog.

Microsoft Security

Malicious OAuth applications used to compromise email servers and spread spam

September 22, 2022 admin cybersecurity, Exchange Server, malicious oauth applications, Microsoft security intelligence, spam

Credit to Author: Microsoft 365 Defender Threat Intelligence Team| Date: Thu, 22 Sep 2022 16:00:00 +0000

Microsoft discovered an attack where attackers installed a malicious OAuth application in compromised tenants and used their Exchange servers to launch spam runs.

The post Malicious OAuth applications used to compromise email servers and spread spam appeared first on Microsoft Security Blog.

MalwareBytes Security

You only have nine months to ditch Exchange Server 2013

June 27, 2022 admin 2013, EOL, eos, Exchange Server, Exploits, proxylogon, proxyoracle, proxyshell, proxytoken

Credit to Author: Pieter Arntz| Date: Mon, 27 Jun 2022 19:51:07 +0000

Microsoft posted a reminder that Exchange Server 2013 is destined to reach end of support very, very soon.

The post You only have nine months to ditch Exchange Server 2013 appeared first on Malwarebytes Labs.

MalwareBytes Security

AvosLocker ransomware uses Microsoft Exchange Server vulnerabilities, says FBI

March 21, 2022 admin avoslocker, cve-2021-26855, cve-2021-31207, cve-2021-34473, cve-2021-34523, Exchange Server, FBI, proxylogon, proxyshell, ransomware

Credit to Author: Pieter Arntz| Date: Mon, 21 Mar 2022 21:09:12 +0000

The AvosLocker ransomware as a service affiliates have been found to target multiple critical infrastructure sectors, using Exchange Server vulnerabilities.

The post AvosLocker ransomware uses Microsoft Exchange Server vulnerabilities, says FBI appeared first on Malwarebytes Labs.

← Previous