Exchange Servers – TheCyberThrone

Zeroday Bugs in Microsoft Exchange disclosed through ZDI

Researchers through Trend Micro’s Zero Day Initiative has disclosed four zero-day vulnerabilities in Microsoft Exchange that can be remotely exploited by an authenticated attacker to execute arbitrary code or disclose…

PravinKarthik November 4, 2023

Malicious IIS Extensions Backdooring Exchange Servers

Threat actors are exploiting the IIS web servers to install backdoors and steal credentials in their latest campaign. Microsoft 365 Defender Research Team has revealed hackers are now using Microsoft’s…

PravinKarthik July 28, 2022

Exchange ProxyShell & ProxyLogon Abused

Hackers are Targeting Microsoft Exchange servers using exploits to distribute malware. The vulnerabilities allow hackers to bypass detection by sending emails with malware attachments or messages containing malicious links to…

PravinKarthik November 22, 2021

Data Breach @ PNB

A vulnerability in the server of Punjab National Bank allegedly exposed the personal and financial information of its about 180 million customers for about seven months. Researchers has claimed that…

PravinKarthik November 21, 2021

Microsoft Exchange Threat Mitigation Service

Organizations using Exchange Server will get a new automated emergency mitigation tool after installing Microsoft's September cumulative updates. This new tool, called the Microsoft Exchange Emergency Mitigation service, is an…

PravinKarthik September 28, 2021

Conti Targets ProxyShell

The Conti ransomware gang is actively targeting unpatched Microsoft Exchange servers through the same exploit used to target servers earlier this year. Conti is targeting networks with ProxyShell, an evolution…

PravinKarthik September 6, 2021

Microsoft Exchange New ProxyToken Headache

A critical vulnerability in Microsoft Exchange Server dubbed as ProxyToken could allow an unauthenticated attacker to access and steal emails from a target’s mailbox. Microsoft Exchange uses two websites.The front-end…

PravinKarthik August 31, 2021

LockFile Exploits PettiPotam

Threat actor has started to leverage the recently discovered PetitPotam NTLM relay attack method to take over the Windows domain on various networks worldwide. Behind the attacks appears to be…

PravinKarthik August 21, 2021