A new vulnerability in Microsoft Exchange is used to attack servers

Researchers have revealed that a new vulnerability in Microsoft Exchange is being used to attack servers and deliver remote access tools and remote administration software.

CrowdStrike cybersecurity experts stumbled upon a new exploit chain while investigating a Play ransomware attack. Upon further analysis, the exploit chain was found to bypass the ProxyNotShell URL Rewrite Mitigation, allowing cybercriminals to have Remote Code Execution (RCE) privileges on targeted endpoints (opens in a new tab).

Leave a Reply

Your email address will not be published. Required fields are marked *