FBI removes malicious web shells from hundreds of compromised Microsoft Exchange servers

The U.S. Department of Justice (DOJ) authorized the FBI to remove malicious web shells from hundreds of compromised and vulnerable Microsoft Exchange servers.

Continue ReadingFBI removes malicious web shells from hundreds of compromised Microsoft Exchange servers

CISA publishes reports on DearCry ransomware and China Chopper Web Shell malware linked to Exchange Server exploits (update-2)

The Cybersecurity and Infrastructure Security Agency (CISA) has published reports on DearCry ransomware and China Chopper Web Shell malware linked to recent Exchange Server exploits. Attackers can use this malware to further compromise on-premise Microsoft Exchange servers and launch other attacks.

Continue ReadingCISA publishes reports on DearCry ransomware and China Chopper Web Shell malware linked to Exchange Server exploits (update-2)

Microsoft: New analysis of Exchange Server vulnerabilities and cyberattacks

Microsoft has published new detailed analysis of Exchange Server vulnerabilities, cybercriminal groups and post-compromise second stage attack malware. In addition, the tech giant offered sound mitigation guidance.

Continue ReadingMicrosoft: New analysis of Exchange Server vulnerabilities and cyberattacks

Critical F5 BIG-IP vulnerability (CVE-2021-22986) under active attack

Security researchers are warning of mass scans and active exploits of a Critical vulnerability on F5 BIG-IP and BIG-IQ infrastructure. F5 patched the Critical remote code execution vulnerability CVE-2021-22986 nearly two weeks ago when the networking company confirmed an unauthenticated attacker could exploit the vulnerability.

Continue ReadingCritical F5 BIG-IP vulnerability (CVE-2021-22986) under active attack