Analyzing attacks taking advantage of the Exchange Server vulnerabilities

Credit to Author: Eric Avena| Date: Thu, 25 Mar 2021 21:21:07 +0000

Microsoft continues to monitor and investigate attacks exploiting the recent on-premises Exchange Server vulnerabilities. As organizations recover from this incident, we continue to publish guidance and share threat intelligence to help detect and evict threat actors from affected environments.

The post Analyzing attacks taking advantage of the Exchange Server vulnerabilities appeared first on Microsoft Security.

Read more

Automatic on-premises Exchange Server mitigation now in Microsoft Defender Antivirus

Credit to Author: Eric Avena| Date: Thu, 18 Mar 2021 22:00:47 +0000

Microsoft Defender Antivirus and System Center Endpoint Protection will automatically mitigate CVE-2021-26855 on any vulnerable Exchange Server on which it is deployed. We have taken this additional step to further support our customers who are still vulnerable and have not yet implemented the complete security update.

The post Automatic on-premises Exchange Server mitigation now in Microsoft Defender Antivirus appeared first on Microsoft Security.

Read more

A week in security (January 11 – January 17)

Credit to Author: Malwarebytes Labs| Date: Mon, 18 Jan 2021 11:30:35 +0000

A roundup of the past week’s breaking security news, from January 11 to January 17th.

Categories: A week in security

Tags:

(Read more…)

The post A week in security (January 11 – January 17) appeared first on Malwarebytes Labs.

Read more

Malsmoke operators abandon exploit kits in favor of social engineering scheme

Credit to Author: Threat Intelligence Team| Date: Mon, 16 Nov 2020 18:00:06 +0000

Threat actors behind malsmoke, one of the largest malvertising campaigns we’ve seen in recent months, have switched malware delivery tactics.

Categories: ExploitsSocial engineeringThreat analysis

Tags:

(Read more…)

The post Malsmoke operators abandon exploit kits in favor of social engineering scheme appeared first on Malwarebytes Labs.

Read more