ProxyNotShell POC exploit code released
A security researcher has released proof-of-concept (PoC) exploit code for Microsoft Exchange ProxyNotShell vulnerabilities (CVE-2022-41040 and CVE-2022-41082).
ProxyShell
The Top 15 mostly commonly exploited vulnerabilities in 2021
The Cybersecurity Advisory (CSA) published details on the top 15 vulnerabilities most routinely exploited by malicious cyber actors in 2021. Common CVEs include Log4Shell, ProxyLogon, ProxyShell, ZeroLogon and others.
Iranian state-sponsored APT actors target Microsoft Exchange and Fortinet vulnerabilities
Iranian state-sponsored advanced persistent threat (APT) actors have been targeting and exploiting Microsoft Exchange and Fortinet vulnerabilities.
APT group ChamelGang targets Russian Energy and Aviation industries, 9 other countries
A new advanced persistent threat (APT) group dubbed ChamelGang has been targeting Russian Energy and Aviation industries, as well as entities in 9 other countries.
Cyberattackers exploiting ProxyShell vulnerabilities
Cyberattackers are scanning and exploiting ProxyShell vulnerabilities on unpatched Microsoft Exchange servers.