Microsoft, CISA and NSA offer security tools and advice, but will you take it?

Microsoft, CISA, and the NSA are individually offering tools and advice that aim to improve security for organizations. But will the targeted audience have the time and resources to accept that help?

Read more

Microsoft Exchange Autodiscover flaw reveals users’ passwords

Researchers were able to harvest hundreds of thousands of credentials thanks to a quirk of the Autodiscover process.

Read more

FBI shuts down malware on hundreds of Exchange servers, opens Pandora’s box

The FBI has accessed hundreds of compromised Exchange servers and deleted web shells placed there by attackers, without asking their admins.

Read more

ProxyLogon PoCs trigger a game of whack-a-mole

Microsoft and others are trying to keep working ProxyLogon PoCs out of the hands of cybercriminals and script-kiddies.

Read more

Ransomware is targeting vulnerable Microsoft Exchange servers

Attacks using the ProxyLogon Microsoft Exchange vulnerability have taken a new twist: DearCry ransomware.

Read more

A week in security (March 1 – 7)

A roundup of cybersecurity news from March 1 – 7, including Ryuk going worm, Exchange servers under attack, stolen VPN data, and more.

Read more

Select your language