Exchange Server Archives - Cyber Security Minute

FBI Agents Secretly Deleted Web Shells From Hacked Microsoft Exchange Servers

Issued by: Security Week

After a wave of major in-the-wild zero-day attacks against Exchange Server installations that occurred globally in January, savvy organizations scrambled to lock down vulnerable Microsoft email servers and remove web shells that were installed by attackers. In early attacks observed by Microsoft, attackers were able to exploit a series of vulnerabilities to access on-premises Exchange…

Malware & Threats

Microsoft Reports ‘DearCry’ Ransomware Targeting Exchange Servers

Issued by: Dark Reading

Attackers have begun to utilize the recently patched Microsoft Exchange Server vulnerabilities to deploy ransomware onto compromised servers, Microsoft reports. The news emerged late last night. Phillip Misner, a member of Microsoft’s security research team, tweeted about the new ransomware family tracked as Ransom:Win32/DoejoCrypt.A and nicknamed “DearCry,” which is using the Microsoft Exchange vulnerabilities to…

Malware & Threats

Multiple Attack Groups Exploited Microsoft Exchange Flaws Prior to the Patches

Issued by: Dark Reading

Multiple attack groups are exploiting the critical Microsoft Exchange Server vulnerabilities patched last week – and the growing wave of global activity began before Microsoft released emergency fixes on March 2. Security firms including Red Canary and FireEye are now tracking the exploit activity in clusters and anticipate the number of clusters will grow over…