[ThreatPost] ‘Tortilla’ Wraps Exchange Servers in ProxyShell Attacks

The Microsoft Exchange ProxyShell vulnerabilities are being exploited yet again for ransomware, this time with Babuk from the new “Tortilla” threat actor.

Source: Read More (Threatpost)

You might be interested in …

[SANS ISC] Number of industrial control systems on the internet is lower then in 2020…but still far from zero, (Wed, May 12th)

All posts, Sans-ISC

With the recent ransomware attack that impacted operation of one of the major US pipelines[1], I thought it might be a good time to revisit the old topic of internet-connected industrial systems. Since operational technologies are generally used to support/control processes that directly impact the physical world, the danger of successful attacks on them should […]

Read More

[ThreatPost] HPE Fixes Critical Zero-Day in Server Management Software

All posts, ThreatPost

The bug in HPE SIM makes it easy as pie for attackers to remotely trigger code, no user interaction necessary. Source: Read More (Threatpost)

Read More

[SecurityWeek] Microsoft Tells Azure Users to Update PowerShell to Patch Vulnerability

All posts, Security Week

Microsoft has told Azure users to update PowerShell — if they are using versions 7.0 or 7.1 — to address a remote code execution vulnerability patched earlier this year. read more Source: Read More (SecurityWeek RSS Feed)

Read More