Microsoft Exchange servers have attacked again

Threat actors have continued their search for vulnerable vulnerabilities in Microsoft Exchange servers, cybersecurity experts said at the recent Black Hat 2021 conference.

Kevin Beaumont, a security researcher, discovered the assault. Moreover after his tweet a dangerous actor was probing his Microsoft Exchange whipping of the Auto discover service on server.

Although these initial attempts were unsuccessful, Beaumont later noticed that the attacker had changed his attack strategy. He did to learn new details that have revealed during a black hat presentation by Dev core security researcher Orange Tsai.
New attack vector
A component of the Proxy Shell attack chain targets Microsoft Exchange Auto discover, Tsai said at a seminar on the subject.

After watching Tsai’s conversation, security researchers PeterJson and Jang published an article with technical information. Information about how they managed to recreate the Proxy Shell operation, which seems to teach threat actors some new tricks.

Equipped with new details, the threat participants appear to have managed to find the vulnerable system.

However, Tsai added that while the Proxy Shell vulnerability has addressed. There are now 400,000 Microsoft Exchange servers on the internet. And Beaumont estimates that roughly half of them have not been patched. So this new method will leave them open and discoverable.

Related Post: NEW APT HACKING GROUP TARGETS MICROSOFT IIS SERVERS WITH ASP.NET EXPLOIT

Published in Lahore Herald #CyberattackOnMicrosoftServers, #Microsoft, #MicrosoftCybersecurityCouncil, #MicrosoftExchangeServerHack, #MicrosoftExchangeServers Published in Lahore Herald

--

--

Lahore Herald is a Pakistani internet media company based in Lahore,it began operations as a social news and entertainment company with a focus on digital media

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Rigelprotocol in their Vision of Taking the DeFi to the moon they have added the Yield Farming V2…

Why I stopped using Freepik

{UPDATE} 押忍!番長3 HD ver.【大都吉宗CITYパチスロ】 Hack Free Resources Generator

Cybersecurity Weekly Issue 10

Hack The Box Traverxec Writeup

{UPDATE} 欢乐果园--从小树苗开始成长为大果树 Hack Free Resources Generator

Credit Card Processors Targeted In Hacker Attacks

#34: Platform.sh’s Security and Privacy Journey (w/ Joey Stanford)

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Lahore Herald

Lahore Herald

Lahore Herald is a Pakistani internet media company based in Lahore,it began operations as a social news and entertainment company with a focus on digital media

More from Medium

Summarizing source code with Abstract Syntax Trees

Indexes In Databases

A dread of working after vacation

Viafoura Conversations — Making Custom User Badges using Python