Exchange | OSG: Bits, Bytes and Packets

Category Archives: Exchange

Over 20k Microsoft Exchange servers risked in exploitable vulnerabilities

December 2, 2023 – 6:58 pm
Posted in Attacks, Computers and Internet, Cyber security, End of Life, Exchange, Exploit Warning, Microsoft, Microsoft Patches, Patch Available, Technology, Vulnerability, Vulnerability Management
Tagged Bleepingcomputer.com, CVE-2020-0688, CVE-2021-26855, CVE-2021-27065, CVE-2022-41082, CVE-2023-21529, CVE-2023-36439, CVE-2023-36745, proxylogon, RCE
Leave a Comment

https://www.bleepingcomputer.com/news/security/over-20-000-vulnerable-microsoft-exchange-servers-exposed-to-attacks/

Some of these CVEs go back years, including the days of ProxyLogon shell attacks. All these have patches available. There are some 30.5k unsupported versions of Exchange as of November, 2023. Read more here.

November, 2023 Patch Tuesday addresses 63 vulnerabilities; five of them are zero days.

November 17, 2023 – 1:21 pm
Posted in Computers and Internet, Cyber security, Exchange, Exploit Warning, Microsoft, Microsoft Patches, Office, Patch Available, Technology, Vulnerability, Windows 10, Windows 11, Windows Server, Zero Day
Tagged CVE-2023-36025, CVE-2023-36033, CVE-2023-36036, CVE-2023-36038, CVE-2023-36413, Microsoft, Patch Tuesday, thehackernews.com, Zero Day
Leave a Comment

https://thehackernews.com/2023/11/alert-microsoft-releases-patch-updates.html

Microsoft is urging that on-prem Exchange servers be secured

January 31, 2023 – 5:09 pm
Posted in Computers and Internet, Cyber security, Exchange, Microsoft
Tagged thehackernews.com
Leave a Comment

https://thehackernews.com/2023/01/microsoft-urges-customers-to-secure-on.html

CISA, the FBI and the NSA release a joint advisory detailing APT activity for Microsoft Exchange server exploitation, particularly in the defense sector since last year

October 4, 2022 – 4:22 pm
Posted in Attacks, CISA, Computers and Internet, Cyber security, Exchange, Exploit Warning, FBI, HAck, Microsoft, Technology, Vulnerability, Zero Day
Tagged China Chopper, CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-27065, Impacket, Microsoft Exchange
Leave a Comment

https://www.cisa.gov/uscert/ncas/alerts/aa22-277a

Microsoft Exchange Zero-Day being exploited in the wild.

https://www.bleepingcomputer.com/news/microsoft/microsoft-confirms-new-exchange-zero-days-are-used-in-attacks/

Customer Guidance for Zero-Day
https://msrc-blog.microsoft.com/2022/09/29/customer-guidance-for-reported-zero-day-vulnerabilities-in-microsoft-exchange-server/

https://isc.sans.edu/diary/Exchange+Server+0Day+Actively+Exploited/29106/

IIS and Exchange Servers backdoored by SessionManager malware

June 30, 2022 – 5:13 pm
Posted in Attacks, Computers and Internet, Cyber security, Exchange, Exploit Warning, HAck, Malware, Microsoft, Virus, Vulnerability, Windows Server
Tagged Bleepingcomputer.com, darkreading.com, Gelsemium, Kaspersky, securelist.com, SessionManager
Leave a Comment

https://www.bleepingcomputer.com/news/security/microsoft-exchange-servers-worldwide-backdoored-with-new-malware/

The SessionManager IIS backdoor

https://securelist.com/the-sessionmanager-iis-backdoor/106868/

https://www.darkreading.com/attacks-breaches/new-sessionmanager-exchange-server-backdoor-globally

CISA/FBI/ACSC/NCSC release joint advisory concerning vulnerabilities in Fortinet and Microsoft Exchange products. These are not new vulnerabilities but remain exploited

November 17, 2021 – 5:07 pm
Posted in Attacks, Business Continuity, CISA, Community, Computers and Internet, Cyber security, Disaster Recovery, Exchange, Exploit Warning, FBI, HAck, Microsoft, Microsoft Patches, Patch Available, ransomware, Virus, VPN
Tagged ACSC, CVE-2018-13379, CVE-2019-5591, CVE-2020-12812, CVE-2021-34473, Fortinet, Fortinet FortiOS, NCSC
Leave a Comment

https://www.bleepingcomputer.com/news/security/us-uk-warn-of-iranian-hackers-exploiting-microsoft-exchange-fortinet/

CVE-2021-42321: New Exchange Zero-Day vulnerability being attacked now

November 10, 2021 – 6:21 am
Posted in Attacks, Business Continuity, Computers and Internet, Cyber security, Exchange, Exploit Warning, Microsoft, Patch Available, Zero Day
Tagged Bleepingcomputer.com, CVE-2021-42321, Exchange Server Health Checker script
Leave a Comment

https://www.bleepingcomputer.com/news/microsoft/microsoft-urges-exchange-admins-to-patch-bug-exploited-in-the-wild/

Cisco Talos: Exchange servers being exploited for ransomware … again

November 3, 2021 – 11:33 pm
Posted in Attacks, Computers and Internet, Cyber security, Disaster Recovery, Exchange, Microsoft, Patch Available, ransomware, Vulnerability
Tagged Babuk, Cisco Talos, EfsPotato, PetitPotam, ProxyShell
Leave a Comment

https://blog.talosintelligence.com/2021/11/babuk-exploits-exchange.html

Microsoft patches 71 vulnerabilities including 4 Zero-Days; one of which is under active exploitation

October 13, 2021 – 6:18 pm
Posted in Attacks, Computers and Internet, Cyber security, Exchange, Exploit Warning, Microsoft, Microsoft Patches, Vulnerability, Windows Server, Zero Day
Tagged CVE-2021-26427, CVE-2021-36970, CVE-2021-38672, CVE-2021-40449, CVE-2021-40454, CVE-2021-40461, CVE-2021-40469, CVE-2021-40486, CVE-2021-40487, CVE-2021-41332, CVE-2021-41335, CVE-2021-41338, CVE-2021-41344, Hyper-V, Kaspersky, Sharepoint, thehackernews.com
Leave a Comment

https://thehackernews.com/2021/10/update-your-windows-pcs-immediately-to.html

OSG: Bits, Bytes and Packets

Category Archives: Exchange

Over 20k Microsoft Exchange servers risked in exploitable vulnerabilities

November, 2023 Patch Tuesday addresses 63 vulnerabilities; five of them are zero days.

Microsoft is urging that on-prem Exchange servers be secured

CISA, the FBI and the NSA release a joint advisory detailing APT activity for Microsoft Exchange server exploitation, particularly in the defense sector since last year

Microsoft Exchange Zero-Day being exploited in the wild.

IIS and Exchange Servers backdoored by SessionManager malware

CISA/FBI/ACSC/NCSC release joint advisory concerning vulnerabilities in Fortinet and Microsoft Exchange products. These are not new vulnerabilities but remain exploited

CVE-2021-42321: New Exchange Zero-Day vulnerability being attacked now

Cisco Talos: Exchange servers being exploited for ransomware … again

Microsoft patches 71 vulnerabilities including 4 Zero-Days; one of which is under active exploitation

« Home

Pages

Categories

Archives

Search

Blogroll

RSS Feeds

Meta

Category Archives: Exchange

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Share this:

Pages

Categories

Archives

Search

Blogroll

RSS Feeds

Meta