[HackerNews] Microsoft Exchange Under Attack With ProxyShell Flaws; Over 1900 Servers Hacked!

The U.S. Cybersecurity and Infrastructure Security Agency is warning of active exploitation attempts that leverage the latest line of “ProxyShell” Microsoft Exchange vulnerabilities that were patched earlier this May, including deploying LockFile ransomware on compromised systems.
Tracked as CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207, the vulnerabilities enable adversaries to bypass ACL

Source: Read More (The Hacker News)

You might be interested in …

[ThreatPost] 80% of Net Neutrality Comments to FCC Were Fudged

All posts, ThreatPost

NY’s AG: Millions of fake comments – in favor and against – came from a secret broadband-funded campaign or from a 19-year-old’s fake identities. Source: Read More (Threatpost)

Read More

[TheRecord] White House double downs on warning about cyberattacks over the holidays

White House deputy national security adviser Anne Neuberger on Thursday urged U.S. organizations to be on guard against malicious digital activity ahead of the Labor Day holiday. “We want to raise awareness and this need for awareness is particularly for critical infrastructure owners and operators who operate critical services for Americans,” Neuberger said during a […]

Read More

[ZDNet] Average time to fix high severity vulnerabilities grows from 197 days to 246 days in 6 months: report

All posts, ZDNet

A new report from NTT Application Security found that the window of exposure for many companies’ vulnerabilities is growing. Source: Read More (Latest topics for ZDNet in Security)

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.