Lucene search
K

9 matches found

The Hacker News
The Hacker News
added 2025/01/18 6:6 a.m.7 views

U.S. Sanctions Chinese Cybersecurity Firm Over Treasury Hack Tied to Silk Typhoon

The U.S. Treasury Department's Office of Foreign Assets Control OFAC has imposed sanctions against a Chinese cybersecurity company and a Shanghai-based cyber actor for their alleged links to the Salt Typhoon group and the recent compromise of the federal agency. "People's Republic of China-linked...

7.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/12/08 12:0 p.m.61 views

Rackspace confirms it suffered a ransomware attack

It's not been a great week for cloud computing service provider Rackspace. On December 2, customers began experiencing problems connecting and logging into their Exchange environments. Rackspace started investigating and discovered an issue that affected its Hosted Exchange environments. Now...

0.4AI score0.99964EPSS
Exploits16
ThreatPost
ThreatPost
added 2022/02/25 7:46 p.m.742 views

Microsoft Exchange Server Bugs Exploited by ‘Cuba’ Ransomware Gang

The ransomware gang known as “Cuba” is increasingly shifting to exploiting Microsoft Exchange vulnerabilities – including ProxyShell and ProxyLogon – as initial infection vectors, researchers have found. The group has likely been prying open these chinks in victims’ armor as early as last August,...

7.8AI score
Exploits0References11
ThreatPost
ThreatPost
added 2021/11/17 5:4 p.m.440 views

Exchange, Fortinet Flaws Being Exploited by Iranian APT, CISA Warns

A state-backed Iranian threat actor has been using multiple CVEs – including both serious Fortinet vulnerabilities for months and a Microsoft Exchange ProxyShell weakness for weeks – looking to gain a foothold within networks before moving laterally and launching BitLocker ransomware and other...

10CVSS10AI score0.99999EPSS
Exploits41References24
ThreatPost
ThreatPost
added 2021/11/16 6:29 p.m.18 views

MosesStaff Locks Up Targets, with No Ransom Demand, No Decryption

The MosesStaff hacking group is aiming politically motivated, destructive attacks at Israeli targets, looking to inflict the most damage possible, researchers warned. Unlike other anti-Zionist hacktivists like the Pay2Key and BlackShadow gangs, which look to extort their victims and cause...

7.4AI score
Exploits0References5
Talos Blog
Talos Blog
added 2021/11/04 4:45 a.m.17 views

Microsoft Exchange vulnerabilities exploited once again for ransomware, this time with Babuk

By Chetan Raghuprasad and Vanja Svajcer, with contributions from Caitlin Huey. Cisco Talos recently discovered a malicious campaign deploying variants of the Babuk ransomware predominantly affecting users in the U.S. with smaller number of infections in U.K., Germany, Ukraine, Finland, Brazil,...

6.9AI score
Exploits0
hivepro
hivepro
added 2021/08/18 11:1 a.m.180 views

Have you patched the vulnerabilities in Microsoft Exchange Server?

THREAT LEVEL: Red. For a detailed advisory, download the pdf file here. Microsoft Exchange Server vulnerabilities have been officially patched for five months now. These vulnerabilities are actively exploited by multiple threat actors named DeadRinger. DeadRinger has been affecting the...

7.5CVSS0.5AI score0.99999EPSS
Exploits66
CISA
CISA
added 2021/03/03 12:0 a.m.14 views

CISA Issues Emergency Directive and Alert on Microsoft Exchange Vulnerabilities

CISA has issued Emergency Directive ED 21-02 and Alert AA21-062A addressing critical vulnerabilities in Microsoft Exchange products. Successful exploitation of these vulnerabilities allows an attacker to access on-premises Exchange servers, enabling them to gain persistent system access and contr...

7.3AI score
Exploits0References3
Cvelist
Cvelist
added 2004/01/08 5:0 a.m.32 views

CVE-2003-0904

Microsoft Exchange 2003 and Outlook Web Access OWA, when configured to use NTLM authentication, does not properly reuse HTTP connections, which can cause OWA users to view mailboxes of other users when Kerberos has been disabled as an authentication method for IIS 6.0, e.g. when SharePoint Servic...

6.6AI score0.08162EPSS
Exploits0References9
Rows per page
Query Builder