exploited

State-sponsored hackers likely exploited MS Exchange 0-Days against around 10 organizations

Microsoft revealed on Friday that a single business group in August 2022 gained initial access and breached Exchange servers by chaining together the two recently disclosed zero-day flaws in a limited set of attacks targeting less than 10 organizations worldwide. . “These attacks installed the Web Chopper shell to facilitate keyboard access, which the attackers …

State-sponsored hackers likely exploited MS Exchange 0-Days against around 10 organizations Read More »

Microsoft Exchange

New Microsoft Exchange zero-day actively exploited in attacks

Threat actors are exploiting previously undisclosed Microsoft Exchange zero-day bugs allowing remote code execution, according to claims by security researchers from Vietnamese cybersecurity firm GTSC, who have been the first to spot and report attacks. Attackers chain the pair of zero-days to deploy Chinese Chopper web shells on compromised servers for persistence and data theft, …

New Microsoft Exchange zero-day actively exploited in attacks Read More »

Microsoft Exchange

Microsoft Exchange’s new zero-days are being actively exploited in attacks

Threat actors are exploiting previously undisclosed Microsoft Exchange zero-day bugs allowing remote code execution, according to claims by security researchers from Vietnamese cybersecurity firm GTSC, who have been the first to spot and report attacks. Attackers chain the pair of zero-days to deploy Chinese Chopper web shells on compromised servers for persistence and data theft, …

Microsoft Exchange’s new zero-days are being actively exploited in attacks Read More »