Cybersecurity specialists reported the detection of a new post-exploitation framework that would allow the compromise of Microsoft Exchange servers. Identified as IceApple, this framework was developed by threat actors capableRead More →
A hacking group allegedly sponsored by the Chinese state is targeting organizations around the world in an espionage campaign active for at least half a year. Cicada, also known asRead More →
Cybersecurity specialists identified a hacker known as “Tortilla” launching powerful ProxyShell cyberattacks against Microsoft Exchange implementations in order to inject the Babuk ransomware variant into the affected systems. The reportRead More →
A hacking group is exploiting Microsoft Exchange servers exposed to the ProxyShell vulnerability in order to install a backdoor and deploy subsequent attacks. As you may recall, ProxyShell is aRead More →
A Sophos security report details the finding of a new ransomware variant specifically targeting on-premises Microsoft Exchange servers without updating. Identified as “DearCry”, experts mention that this is an unsophisticatedRead More →
The infamous SolarWinds cyberattack keeps bringing undesirable consequences for public and private organizations around the world; an example of this is the latest announcement by Microsoft security teams. The companyRead More →
Cybersecurity specialists report finding two PowerShell backdoors never detected and apparently used in attacking a Kuwait-based organization’s Microsoft Exchange servers. These attacks are related to a hacker group known asRead More →
Although Microsoft received the CVE-2020-0688 flaw report a while ago, a recent report has revealed that more than 247,000 Microsoft Exchange servers continue to operate without the required patches. ThisRead More →