home.social

#proxynotshell — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #proxynotshell, aggregated by home.social.

  1. Analyst207 @[email protected] ·

    China-linked hackers exploit Microsoft Exchange in Azerbaijani energy firm attacks.

    A group of China-linked hackers, known as FamousSparrow, launched a sustained cyberattack on an Azerbaijani oil and gas company, exploiting Microsoft Exchange vulnerabilities in a multi-wave intrusion that spanned three months. The attackers used the ProxyNotShell exploit to gain and maintain access to…

    osintsights.com/china-linked-h

    #ChinalinkedHackers #MicrosoftExchange #Proxynotshell #Famoussparrow #EarthEstries

    #chinalinkedhackers #microsoftexchange #proxynotshell #famoussparrow #earthestries
  2. Kevin Beaumont @[email protected] ·

    Later today, the UK government plan to link the Microsoft Exchange #ProxyNotShell incident at the Electoral Commission to China. doublepulsar.com/uk-electoral-

    Edit: I should say, they might have got caught up in ProxyShell too.

    #proxynotshell
  3. Kevin Beaumont @[email protected] ·

    Later today, the UK government plan to link the Microsoft Exchange #ProxyNotShell incident at the Electoral Commission to China. doublepulsar.com/uk-electoral-

    Edit: I should say, they might have got caught up in ProxyShell too.

    #proxynotshell
  4. Kevin Beaumont @[email protected] ·

    Later today, the UK government plan to link the Microsoft Exchange #ProxyNotShell incident at the Electoral Commission to China. doublepulsar.com/uk-electoral-

    Edit: I should say, they might have got caught up in ProxyShell too.

    #proxynotshell
  5. Kevin Beaumont @[email protected] ·

    Later today, the UK government plan to link the Microsoft Exchange #ProxyNotShell incident at the Electoral Commission to China. doublepulsar.com/uk-electoral-

    Edit: I should say, they might have got caught up in ProxyShell too.

    #proxynotshell
  6. Kevin Beaumont @[email protected] ·

    Later today, the UK government plan to link the Microsoft Exchange #ProxyNotShell incident at the Electoral Commission to China. doublepulsar.com/uk-electoral-

    Edit: I should say, they might have got caught up in ProxyShell too.

    #proxynotshell
  7. Kevin Beaumont @[email protected] ·

    #ProxyNotShell in Exchange Server fingered in UK Electoral Commission hack.

    TechCrunch found Electoral Commission were using on prem Exchange.

    I had a look via @shodan history feature - their Exchange Server, with OWA enabled, was online until later in 2022 (when the incident began) - and didn't have ProxyNotShell patches installed, as Microsoft hadn't released them.

    The mitigations MS released were bypassable, as seen in the Rackspace Hosted Exchange hack.

    techcrunch.com/2023/08/09/pars

    #proxynotshell
  8. Kevin Beaumont @[email protected] ·

    #ProxyNotShell in Exchange Server fingered in UK Electoral Commission hack.

    TechCrunch found Electoral Commission were using on prem Exchange.

    I had a look via @shodan history feature - their Exchange Server, with OWA enabled, was online until later in 2022 (when the incident began) - and didn't have ProxyNotShell patches installed, as Microsoft hadn't released them.

    The mitigations MS released were bypassable, as seen in the Rackspace Hosted Exchange hack.

    techcrunch.com/2023/08/09/pars

    #proxynotshell
  9. Kevin Beaumont @[email protected] ·

    #ProxyNotShell in Exchange Server fingered in UK Electoral Commission hack.

    TechCrunch found Electoral Commission were using on prem Exchange.

    I had a look via @shodan history feature - their Exchange Server, with OWA enabled, was online until later in 2022 (when the incident began) - and didn't have ProxyNotShell patches installed, as Microsoft hadn't released them.

    The mitigations MS released were bypassable, as seen in the Rackspace Hosted Exchange hack.

    techcrunch.com/2023/08/09/pars

    #proxynotshell
  10. Kevin Beaumont @[email protected] ·

    #ProxyNotShell in Exchange Server fingered in UK Electoral Commission hack.

    TechCrunch found Electoral Commission were using on prem Exchange.

    I had a look via @shodan history feature - their Exchange Server, with OWA enabled, was online until later in 2022 (when the incident began) - and didn't have ProxyNotShell patches installed, as Microsoft hadn't released them.

    The mitigations MS released were bypassable, as seen in the Rackspace Hosted Exchange hack.

    techcrunch.com/2023/08/09/pars

    #proxynotshell
  11. Kevin Beaumont @[email protected] ·

    #ProxyNotShell in Exchange Server fingered in UK Electoral Commission hack.

    TechCrunch found Electoral Commission were using on prem Exchange.

    I had a look via @shodan history feature - their Exchange Server, with OWA enabled, was online until later in 2022 (when the incident began) - and didn't have ProxyNotShell patches installed, as Microsoft hadn't released them.

    The mitigations MS released were bypassable, as seen in the Rackspace Hosted Exchange hack.

    techcrunch.com/2023/08/09/pars

    #proxynotshell
  12. Marcel SIneM(S)US @[email protected] ·

    #ProxyShell & Co.: #Microsoft gibt Tipps, um #Exchange Server abzusichern | heise online heise.de/news/ProxyShell-Co-Mi #MicrosoftExchange #ProxyNotShell

    #proxynotshell #microsoftexchange #exchange #microsoft #proxyshell
  13. Marcel SIneM(S)US @[email protected] ·

    #ProxyShell & Co.: #Microsoft gibt Tipps, um #Exchange Server abzusichern | heise online heise.de/news/ProxyShell-Co-Mi #MicrosoftExchange #ProxyNotShell

    #proxynotshell #microsoftexchange #exchange #microsoft #proxyshell
  14. Marcel SIneM(S)US @[email protected] ·

    Beim #Cloud-Anbieter #Rackspace hat die Play-#Ransomware zugeschlagen | heise online heise.de/news/Beim-Cloud-Anbie #ProxyNotShell #Malware #MicrosoftExchange

    #microsoftexchange #malware #proxynotshell #ransomware #rackspace #cloud
  15. Marcel SIneM(S)US @[email protected] ·

    Beim #Cloud-Anbieter #Rackspace hat die Play-#Ransomware zugeschlagen | heise online heise.de/news/Beim-Cloud-Anbie #ProxyNotShell #Malware #MicrosoftExchange

    #microsoftexchange #malware #proxynotshell #ransomware #rackspace #cloud
  16. didib_photo 📷 @[email protected] ·

    Die seit September bekannte Schwachstelle #ProxyNotShell von #Microsoft #ExchangeServer ist auf hunderten Servern in der #Schweiz nicht behoben worden. #Patch steht längst zur Verfügung.

    Gleichzeitig sei #ITSecurity die oberste Priorität der #CIO.🤔

    netzwoche.ch/news/2023-01-04/h

    netzwoche.ch/news/2022-12-07/d (siehe Grafik im Artikel)

    #cybersecurity #techstuff

    #proxynotshell #microsoft #exchangeserver #schweiz #patch #itsecurity
  17. didib_photo 📷 @[email protected] ·

    Die seit September bekannte Schwachstelle #ProxyNotShell von #Microsoft #ExchangeServer ist auf hunderten Servern in der #Schweiz nicht behoben worden. #Patch steht längst zur Verfügung.

    Gleichzeitig sei #ITSecurity die oberste Priorität der #CIO.🤔

    netzwoche.ch/news/2023-01-04/h

    netzwoche.ch/news/2022-12-07/d (siehe Grafik im Artikel)

    #cybersecurity #techstuff

    #proxynotshell #microsoft #exchangeserver #schweiz #patch #itsecurity
  18. didib_photo 📷 @[email protected] ·

    Die seit September bekannte Schwachstelle #ProxyNotShell von #Microsoft #ExchangeServer ist auf hunderten Servern in der #Schweiz nicht behoben worden. #Patch steht längst zur Verfügung.

    Gleichzeitig sei #ITSecurity die oberste Priorität der #CIO.🤔

    netzwoche.ch/news/2023-01-04/h

    netzwoche.ch/news/2022-12-07/d (siehe Grafik im Artikel)

    #cybersecurity #techstuff

    #techstuff #cybersecurity #cio #itsecurity #patch #schweiz
  19. Unveiled Security @[email protected] ·

    On Dec 22, 2022, Unit42 released a threat brief on the new OWASSRF exploit method for Microsoft Exchange Server published by CrowdStrike

    Threat Brief: OWASSRF Vulnerability Exploitation

    unit42.paloaltonetworks.com/th

    #OWASSRF #ProxyNotShell #Cybersecurity #CyberThreatIntelligence

    #owassrf #proxynotshell #cybersecurity #cyberthreatintelligence
  20. Unveiled Security @[email protected] ·

    On Dec 22, 2022, Unit42 released a threat brief on the new OWASSRF exploit method for Microsoft Exchange Server published by CrowdStrike

    Threat Brief: OWASSRF Vulnerability Exploitation

    unit42.paloaltonetworks.com/th

    #OWASSRF #ProxyNotShell #Cybersecurity #CyberThreatIntelligence

    #owassrf #proxynotshell #cybersecurity #cyberthreatintelligence
  21. Unveiled Security @[email protected] ·

    On Dec 22, 2022, Unit42 released a threat brief on the new OWASSRF exploit method for Microsoft Exchange Server published by CrowdStrike

    Threat Brief: OWASSRF Vulnerability Exploitation

    unit42.paloaltonetworks.com/th

    #OWASSRF #ProxyNotShell #Cybersecurity #CyberThreatIntelligence

    #cyberthreatintelligence #cybersecurity #proxynotshell #owassrf
  22. Unveiled Security @[email protected] ·

    On Dec 22, 2022, Unit42 released a threat brief on the new OWASSRF exploit method for Microsoft Exchange Server published by CrowdStrike

    Threat Brief: OWASSRF Vulnerability Exploitation

    unit42.paloaltonetworks.com/th

    #OWASSRF #ProxyNotShell #Cybersecurity #CyberThreatIntelligence

    #owassrf #proxynotshell #cybersecurity #cyberthreatintelligence
  23. kantorkel @[email protected] ·

    Wie die #HAW #Hamburg geransomwared wurde? Vielleicht so:

    haw-mailer.haw-hamburg.de (15.11.2022)

    Found Exchange server:
    Build: 15.1.2507.13
    Version: 2016CU23+KB5019077
    Build date: 10/2022
    Affected by CVE-2022-41040
    Affected by CVE-2022-41082
    Affected by CVE-2022-41078
    Affected by CVE-2022-41123
    Affected by CVE-2022-41079
    Affected by CVE-2022-41080

    [via @leakix] #OWASSRF #ProxyNotShell

    #haw #hamburg #owassrf #proxynotshell
  24. kantorkel @[email protected] ·

    Wie die #HAW #Hamburg geransomwared wurde? Vielleicht so:

    haw-mailer.haw-hamburg.de (15.11.2022)

    Found Exchange server:
    Build: 15.1.2507.13
    Version: 2016CU23+KB5019077
    Build date: 10/2022
    Affected by CVE-2022-41040
    Affected by CVE-2022-41082
    Affected by CVE-2022-41078
    Affected by CVE-2022-41123
    Affected by CVE-2022-41079
    Affected by CVE-2022-41080

    [via @leakix] #OWASSRF #ProxyNotShell

    #haw #hamburg #owassrf #proxynotshell
  25. kantorkel @[email protected] ·

    Wie die #HAW #Hamburg geransomwared wurde? Vielleicht so:

    haw-mailer.haw-hamburg.de (15.11.2022)

    Found Exchange server:
    Build: 15.1.2507.13
    Version: 2016CU23+KB5019077
    Build date: 10/2022
    Affected by CVE-2022-41040
    Affected by CVE-2022-41082
    Affected by CVE-2022-41078
    Affected by CVE-2022-41123
    Affected by CVE-2022-41079
    Affected by CVE-2022-41080

    [via @leakix] #OWASSRF #ProxyNotShell

    #owassrf #proxynotshell #haw #hamburg
  26. kantorkel @[email protected] ·

    Wie die #HAW #Hamburg geransomwared wurde? Vielleicht so:

    haw-mailer.haw-hamburg.de (15.11.2022)

    Found Exchange server:
    Build: 15.1.2507.13
    Version: 2016CU23+KB5019077
    Build date: 10/2022
    Affected by CVE-2022-41040
    Affected by CVE-2022-41082
    Affected by CVE-2022-41078
    Affected by CVE-2022-41123
    Affected by CVE-2022-41079
    Affected by CVE-2022-41080

    [via @leakix] #OWASSRF #ProxyNotShell

    #proxynotshell #owassrf #hamburg #haw
  27. kantorkel @[email protected] ·

    Wie die #HAW #Hamburg geransomwared wurde? Vielleicht so:

    haw-mailer.haw-hamburg.de (15.11.2022)

    Found Exchange server:
    Build: 15.1.2507.13
    Version: 2016CU23+KB5019077
    Build date: 10/2022
    Affected by CVE-2022-41040
    Affected by CVE-2022-41082
    Affected by CVE-2022-41078
    Affected by CVE-2022-41123
    Affected by CVE-2022-41079
    Affected by CVE-2022-41080

    [via @leakix] #OWASSRF #ProxyNotShell

    #haw #hamburg #owassrf #proxynotshell
  28. CyberGladius :verified: @[email protected] ·

    #PlayRansomware's new exploit method to bypass mitigations to #ProxyNotShell is very interesting. I am going to need to build some new IOC for this.
    #cybersecurity

    crowdstrike.com/blog/owassrf-e

    #cybersecurity #proxynotshell #playransomware
  29. CyberGladius :verified: @[email protected] ·

    #PlayRansomware's new exploit method to bypass mitigations to #ProxyNotShell is very interesting. I am going to need to build some new IOC for this.
    #cybersecurity

    crowdstrike.com/blog/owassrf-e

    #playransomware #proxynotshell #cybersecurity
  30. Eveline Meijer @[email protected] ·

    Flinke beschuldiging van #Rackspace: de mitigations die #Microsoft had aanbevolen voor de Exchange-kwetsbaarheid #ProxyNotShell zijn te omzeilen, wat de reden zou zijn dat Rackspace in december getroffen is door een grote cyberaanval. Het bedrijf installeerde de patch namelijk niet, maar vertrouwde op die mitigations.

    agconnect.nl/artikel/rackspace

    #proxynotshell #microsoft #rackspace
  31. Eveline Meijer @EvelineMeijer ·

    Flinke beschuldiging van : de mitigations die had aanbevolen voor de Exchange-kwetsbaarheid zijn te omzeilen, wat de reden zou zijn dat Rackspace in december getroffen is door een grote cyberaanval. Het bedrijf installeerde de patch namelijk niet, maar vertrouwde op die mitigations.

    agconnect.nl/artikel/rackspace

    #rackspace #microsoft #proxynotshell
  32. Eveline Meijer @[email protected] ·

    Flinke beschuldiging van #Rackspace: de mitigations die #Microsoft had aanbevolen voor de Exchange-kwetsbaarheid #ProxyNotShell zijn te omzeilen, wat de reden zou zijn dat Rackspace in december getroffen is door een grote cyberaanval. Het bedrijf installeerde de patch namelijk niet, maar vertrouwde op die mitigations.

    agconnect.nl/artikel/rackspace

    #proxynotshell #microsoft #rackspace
  33. Eveline Meijer @[email protected] ·

    Flinke beschuldiging van #Rackspace: de mitigations die #Microsoft had aanbevolen voor de Exchange-kwetsbaarheid #ProxyNotShell zijn te omzeilen, wat de reden zou zijn dat Rackspace in december getroffen is door een grote cyberaanval. Het bedrijf installeerde de patch namelijk niet, maar vertrouwde op die mitigations.

    agconnect.nl/artikel/rackspace

    #rackspace #microsoft #proxynotshell
  34. Eveline Meijer @[email protected] ·

    Flinke beschuldiging van #Rackspace: de mitigations die #Microsoft had aanbevolen voor de Exchange-kwetsbaarheid #ProxyNotShell zijn te omzeilen, wat de reden zou zijn dat Rackspace in december getroffen is door een grote cyberaanval. Het bedrijf installeerde de patch namelijk niet, maar vertrouwde op die mitigations.

    agconnect.nl/artikel/rackspace

    #proxynotshell #microsoft #rackspace
  35. AG Connect @[email protected] ·

    Hostingreus Rackspace had de grote #Exchange-kwetsbaarheid #ProxyNotShell niet gepatcht, maar vertrouwde op beperkende maatregelen van #Microsoft. Die mitigations zijn echter te omzeilen, wat de softwareleverancier volgens Rackspace níet heeft aangegeven.
    agconnect.nl/artikel/rackspace

    #microsoft #proxynotshell #exchange
  36. AG Connect @AGConnect ·

    Hostingreus Rackspace had de grote -kwetsbaarheid niet gepatcht, maar vertrouwde op beperkende maatregelen van . Die mitigations zijn echter te omzeilen, wat de softwareleverancier volgens Rackspace níet heeft aangegeven.
    agconnect.nl/artikel/rackspace

    #exchange #proxynotshell #microsoft
  37. AG Connect @[email protected] ·

    Hostingreus Rackspace had de grote #Exchange-kwetsbaarheid #ProxyNotShell niet gepatcht, maar vertrouwde op beperkende maatregelen van #Microsoft. Die mitigations zijn echter te omzeilen, wat de softwareleverancier volgens Rackspace níet heeft aangegeven.
    agconnect.nl/artikel/rackspace

    #microsoft #proxynotshell #exchange
  38. AG Connect @[email protected] ·

    Hostingreus Rackspace had de grote #Exchange-kwetsbaarheid #ProxyNotShell niet gepatcht, maar vertrouwde op beperkende maatregelen van #Microsoft. Die mitigations zijn echter te omzeilen, wat de softwareleverancier volgens Rackspace níet heeft aangegeven.
    agconnect.nl/artikel/rackspace

    #exchange #proxynotshell #microsoft
  39. Marcel SIneM(S)US @[email protected] ·

    Erstaunlich, dass nach zwei Monaten immer noch so viele Server nicht gepatcht sind...

    Jetzt patchen! Noch 60.000 #Exchange-Server für #ProxyNotShell-Attacken anfällig | heise online heise.de/news/Jetzt-patchen-No #Microsoft #MicrosoftExchange

    #microsoftexchange #microsoft #proxynotshell #exchange
  40. Marcel SIneM(S)US @[email protected] ·

    Erstaunlich, dass nach zwei Monaten immer noch so viele Server nicht gepatcht sind...

    Jetzt patchen! Noch 60.000 #Exchange-Server für #ProxyNotShell-Attacken anfällig | heise online heise.de/news/Jetzt-patchen-No #Microsoft #MicrosoftExchange

    #microsoftexchange #microsoft #proxynotshell #exchange
  41. heise online @[email protected] ·

    Jetzt patchen! Noch 60.000 Exchange-Server für ProxyNotShell-Attacken anfällig

    Sicherheitsforscher warnen vor verwundbaren Exchange-Servern. 30.000 davon sind in Europa – der Großteil in Deutschland. Sicherheitspatches sind verfügbar.

    heise.de/news/Jetzt-patchen-No

    #MicrosoftExchange #Patches #ProxyNotShell #Security #Sicherheitslücken #Updates #News

    #microsoftexchange #patches #proxynotshell #security #sicherheitslucken #updates
  42. heise online @[email protected] ·

    Jetzt patchen! Noch 60.000 Exchange-Server für ProxyNotShell-Attacken anfällig

    Sicherheitsforscher warnen vor verwundbaren Exchange-Servern. 30.000 davon sind in Europa – der Großteil in Deutschland. Sicherheitspatches sind verfügbar.

    heise.de/news/Jetzt-patchen-No

    #MicrosoftExchange #Patches #ProxyNotShell #Security #Sicherheitslücken #Updates #News

    #microsoftexchange #patches #proxynotshell #security #sicherheitslucken #updates
  43. heise online @[email protected] ·

    Jetzt patchen! Noch 60.000 Exchange-Server für ProxyNotShell-Attacken anfällig

    Sicherheitsforscher warnen vor verwundbaren Exchange-Servern. 30.000 davon sind in Europa – der Großteil in Deutschland. Sicherheitspatches sind verfügbar.

    heise.de/news/Jetzt-patchen-No

    #MicrosoftExchange #Patches #ProxyNotShell #Security #Sicherheitslücken #Updates #News

    #microsoftexchange #patches #proxynotshell #security #sicherheitslucken #updates
  44. heise online @[email protected] ·

    Jetzt patchen! Noch 60.000 Exchange-Server für ProxyNotShell-Attacken anfällig

    Sicherheitsforscher warnen vor verwundbaren Exchange-Servern. 30.000 davon sind in Europa – der Großteil in Deutschland. Sicherheitspatches sind verfügbar.

    heise.de/news/Jetzt-patchen-No

    #MicrosoftExchange #Patches #ProxyNotShell #Security #Sicherheitslücken #Updates #News

    #news #updates #sicherheitslucken #security #proxynotshell #patches
  45. heise online @[email protected] ·

    Jetzt patchen! Noch 60.000 Exchange-Server für ProxyNotShell-Attacken anfällig

    Sicherheitsforscher warnen vor verwundbaren Exchange-Servern. 30.000 davon sind in Europa – der Großteil in Deutschland. Sicherheitspatches sind verfügbar.

    heise.de/news/Jetzt-patchen-No

    #MicrosoftExchange #Patches #ProxyNotShell #Security #Sicherheitslücken #Updates #News

    #microsoftexchange #patches #proxynotshell #security #sicherheitslucken #updates
  46. Thomas Lee ✅ :patreon: @[email protected] ·

    The latest A Daily Dose of PowerShell! paper.li/doctordns/1580827252? Thanks to @[email protected] #proxynotshell #powershell

    #proxynotshell #powershell
  47. Thomas Lee ✅ :patreon: @[email protected] ·

    The latest A Daily Dose of PowerShell! paper.li/doctordns/1580827252? Thanks to @[email protected] #proxynotshell #powershell

    #proxynotshell #powershell
  48. Thomas Lee ✅ :patreon: @[email protected] ·

    The latest A Daily Dose of PowerShell! paper.li/doctordns/1580827252? Thanks to @[email protected] #proxynotshell #powershell

    #proxynotshell #powershell
  49. Thomas Lee ✅ :patreon: @[email protected] ·

    The latest A Daily Dose of PowerShell! paper.li/doctordns/1580827252? Thanks to @[email protected] #proxynotshell #powershell

    #powershell #proxynotshell
  50. Thomas Lee ✅ :patreon: @[email protected] ·

    The latest A Daily Dose of PowerShell! paper.li/doctordns/1580827252? Thanks to @[email protected] #proxynotshell #powershell

    #proxynotshell #powershell