Exchange Archives - Page 2 of 4

Microsoft issues emergency Exchange server patch

Security Updates & Patches / Frank Crast / January 2, 2022 / Exchange, Microsoft

Microsoft has issued an emergency Exchange server patch that fixes an issue where email messages can get stuck in transport queues.

Microsoft issues emergency Exchange server patch Read More »

Iranian state-sponsored APT actors target Microsoft Exchange and Fortinet vulnerabilities

Cybersecurity Attacks, Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / November 18, 2021 / APT, ChamelGang, CVE-2018-13379, CVE-2019-5591, CVE-2020-12812, CVE-2021-34473, Exchange, Fortigate, Fortinet, ProxyShell, VPN

Iranian state-sponsored advanced persistent threat (APT) actors have been targeting and exploiting Microsoft Exchange and Fortinet vulnerabilities.

Iranian state-sponsored APT actors target Microsoft Exchange and Fortinet vulnerabilities Read More »

Microsoft November 2021 Security Updates includes fixes for 2 zero-days under active exploit

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / November 10, 2021 / CVE-2021-26443, CVE-2021-3711, CVE-2021-38666, CVE-2021-42279, CVE-2021-42292, CVE-2021-42298, CVE-2021-42316, CVE-2021-42321, Excel, Exchange, Office

Microsoft has released the November 2021 Security Updates that includes patches for 55 vulnerabilities, 6 of those rated Critical. The updates also address 2 zero-day bugs being actively exploited in the wild.

Microsoft November 2021 Security Updates includes fixes for 2 zero-days under active exploit Read More »

APT group ChamelGang targets Russian Energy and Aviation industries, 9 other countries

Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / Frank Crast / October 2, 2021 / APT, aviation, BeaconLoader, ChamelGang, Cobalt Strike, CVE-2017-12149, DoorMe, energy, Exchange, FRP, ProxyShell, Tiny shell

A new advanced persistent threat (APT) group dubbed ChamelGang has been targeting Russian Energy and Aviation industries, as well as entities in 9 other countries.

APT group ChamelGang targets Russian Energy and Aviation industries, 9 other countries Read More »

Sidewalk backdoor linked to Grayfly espionage group

Cybercrime, Cybersecurity Attacks, Malware, Vulnerabilities & Exploits / Frank Crast / September 13, 2021 / backdoor, C2, ESET, espionage, Exchange, Grayfly, malware, shellcode, Sidewalk

Researchers have recently discovered the Sidewalk modular backdoor has been linked to a Chinese Grayfly espionage group.

Sidewalk backdoor linked to Grayfly espionage group Read More »

Cyberattackers exploiting ProxyShell vulnerabilities

Cybersecurity Attacks, Vulnerabilities & Exploits / Frank Crast / August 25, 2021 / CVE-2021-34473, CVE-2021-34523, Exchange, LockFile, Microsoft, ProxyShell

Cyberattackers are scanning and exploiting ProxyShell vulnerabilities on unpatched Microsoft Exchange servers.

Cyberattackers exploiting ProxyShell vulnerabilities Read More »

NIST SP 800-47 Rev. 1: Managing the Security of Information Exchanges

Messaging Security, Standards & Guidelines / Frank Crast / July 20, 2021 / Exchange, Information, NIST, SP 800-47

The National Institute of Standards and Technology (NIST) has issued the NIST SP 800-47 Rev. 1 Managing the Security of Information Exchanges.

NIST SP 800-47 Rev. 1: Managing the Security of Information Exchanges Read More »

U.S. government releases advisories and indictments related to “sophisticated Chinese state-sponsored activity”

Cybersecurity Attacks, Vulnerabilities & Exploits / Frank Crast / July 20, 2021 / APT, APT40, Chinese, CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-27065, Cybersecurity Threat Center, DOJ, Exchange, FBI, HSDD, MSS, NSA

The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the National Security Agency (NSA) have observed “sophisticated Chinese state-sponsored activity” targeting multiple public and private sectors in the United States.

U.S. government releases advisories and indictments related to “sophisticated Chinese state-sponsored activity” Read More »

Microsoft July 2021 Security Updates includes fixes for 13 Critical RCEs, 3 zero-day vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / Frank Crast / July 14, 2021 / CVE-2021-33740, CVE-2021-34439, CVE-2021-34448, CVE-2021-34450, CVE-2021-34458, CVE-2021-34464, CVE-2021-34473, CVE-2021-34474, CVE-2021-34494, CVE-2021-34497, CVE-2021-34503, CVE-2021-34522, CVE-2021-34527, Dynamics, Exchange, Malware Protection Engine, Windows, Windows 10, Windows Server

Microsoft has released the July 2021 Security updates that includes patches for 117 vulnerabilities, 13 of those rated Critical. The updates also include fixes for 3 zero-day bugs exploited in the wild.

Microsoft July 2021 Security Updates includes fixes for 13 Critical RCEs, 3 zero-day vulnerabilities Read More »

Microsoft April 2021 Security Updates, includes fixes for Critical Exchange Server vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / Frank Crast / April 14, 2021 / AppX, Azure, codecs, CVE-2021-28480, CVE-2021-28481, CVE-2021-28482, CVE-2021-28483, DevOps, Exchange, Hyper-V, Sphere, Win32K, WLAN

Microsoft has released the April 2021 Security updates that includes patches for 114 vulnerabilities, 19 of those rated Critical. The updates also include fixes for multiple Microsoft Exchange flaws that have a higher likelihood of being exploited.

Microsoft April 2021 Security Updates, includes fixes for Critical Exchange Server vulnerabilities Read More »