Displaying items by tag: Microsoft Exchange Server

Google appears to have failed so far in 2022 to reach one of the stated goals in its review of zero-days for 2021: sharing exploit samples or detailed technical descriptions more widely.

Published in Security

Security vendor WatchGuard Technologies has published its latest quarterly Internet Security Report. Findings for Q3 2021 include a decrease in total perimeter malware detection volume, although endpoint malware detections had already surpassed the total for 2020, with Q4 2021 data yet to be reported.

Published in Security

Threat actors have used exploits for Microsoft Exchange Server to deceive users into opening emails with malicious content, the security firm Trend Micro says.

Published in Security

Microsoft has been urged to reconsider its position on removing exploits from GitHub, the code repository which it acquired in 2018, after an incident in which it removed an exploit for Microsoft Exchange Server from the site.

Published in Security

It was always expected after Microsoft acquired the software code repository GitHub that corporate interests would come first, not the interests of security researchers.

Published in Open Sauce

Microsoft has enabled what must surely be one of the most-requested features for Office 365 - the ability to send email from a proxy address, or an alias.

Published in The Wired CIO

Once more, the unsupported allegation that Chinese telecoms provider Huawei Technologies was up to no good in some country's network has been aired, this time, by the Guardian.

Published in Open Sauce

The FBI has intervened to clean up the mess left by attacks on on-premise Microsoft Exchange Server installations after obtaining court orders to access hundreds of vulnerable machines in the US and remove Web shells.

Published in Security

Global security provider Sophos has discovered a Microsoft Exchange Server hosting a malicious monero cryptominer which is aimed at other Exchange servers.

Published in Security

The BBC has questioned whether Microsoft's publication of a post claiming that firmware attacks are on the rise is a red herring to distract from the issues the company is having with Microsoft Exchange Server.

Published in Open Sauce

Close on the heels of the DearCry Windows ransomware, that appeared earlier this month and attacked Microsoft Exchange Server flaws, another strain, known as Black Kingdom, has emerged to take advantage of the same vulnerabilities.

Published in Security

The proof-of-concept code for the Microsoft Exchange Server vulnerabilities, that was posted on code repository GitHub and removed by the company, has now been re-posted by a number of people other than the original poster.

Published in Security

Google has taken a swing at Microsoft over its statements on the recent media stoushes, accusing the Redmond behemoth of "making self-serving claims", and being "willing to break the way the open web works in an effort to undercut a rival.

Published in Technology Regulation

New Windows ransomware, which has been given the name DearCry, has started affecting systems to which access has been gained by exploiting the Microsoft Exchange Server flaws that were announced by Microsoft on 2 March.

Published in Security

The Microsoft-owned code repository GitHub has sought to protect the wares of its parent company from attack by taking down proof-of-concept code for exploiting two of the four Microsoft Exchange Server bugs that came to light recently.

Published in Security

The number of APT groups "exploiting the latest Exchange vulnerabilities grows, with thousands of email servers under siege" according to security company ESET.

Published in Security

Microsoft has issued an advisory stating that four zero-day exploits are being used to attack versions of Microsoft Exchange Server on-premise.

Published in Security

WEBINARS ONLINE & ON-DEMAND

GUEST ARTICLES

VENDOR NEWS

Guest Opinion

Guest Interviews

Guest Reviews

Guest Research

Guest Research & Case Studies

Channel News

Comments