Aida Akl · @AAKL
383 followers · 643 posts · Server noc.socialFrom yesterday, and if true, #Microsoft is not in a good place right now. #cybersecurity #infosec #zeroday #ProxyNotShell
How an unpatched Microsoft Exchange 0-day likely caused one of the UK’s biggest hacks ever https://arstechnica.com/security/2023/08/how-an-unpatched-microsoft-exchange-0-day-likely-caused-one-of-the-uks-biggest-hacks-ever/
#ProxyNotShell #zeroday #infosec #cybersecurity #microsoft
Marcel SIneM(S)US ☑️ · @simsus
143 followers · 1802 posts · Server social.tchncs.de#ProxyShell & Co.: #Microsoft gibt Tipps, um #Exchange Server abzusichern | heise online https://www.heise.de/news/ProxyShell-Co-Microsoft-gibt-Tipps-um-Exchange-Server-abzusichern-7472639.html #MicrosoftExchange #ProxyNotShell
#ProxyNotShell #microsoftexchange #exchange #microsoft #proxyshell
Raj Samani · @Raj_Samani
472 followers · 49 posts · Server ioc.exchangePlay #ransomware attack against Rackspace "chains CVE-2022-41080 + CVE-2022-41082 for RCE through OWA. This allows miscreants to bypass URL rewrite mitigations for Autodiscover endpoint provided by Microsoft in response to #ProxyNotShell" https://www.theregister.com/2023/01/05/rackspace_ransomware_gang/ #malware #infosec
#ransomware #ProxyNotShell #malware #infosec
Marcel SIneM(S)US ☑️ · @simsus
128 followers · 1429 posts · Server social.tchncs.de
Beim #Cloud-Anbieter #Rackspace hat die Play-#Ransomware zugeschlagen | heise online https://www.heise.de/news/Beim-Cloud-Anbieter-Rackspace-hat-die-Play-Ransomware-zugeschlagen-7450344.html #ProxyNotShell #Malware #MicrosoftExchange
#microsoftexchange #malware #ProxyNotShell #ransomware #rackspace #cloud
kantorkel · @kantorkel
1101 followers · 79 posts · Server social.bau-ha.usWie die #HAW #Hamburg geransomwared wurde? Vielleicht so:
haw-mailer.haw-hamburg.de (15.11.2022)
Found Exchange server:
Build: 15.1.2507.13
Version: 2016CU23+KB5019077
Build date: 10/2022
Affected by CVE-2022-41040
Affected by CVE-2022-41082
Affected by CVE-2022-41078
Affected by CVE-2022-41123
Affected by CVE-2022-41079
Affected by CVE-2022-41080
[via @leakix] #OWASSRF #ProxyNotShell
#HAW #hamburg #owassrf #ProxyNotShell
Marcel SIneM(S)US ☑️ · @simsus
126 followers · 1378 posts · Server social.tchncs.de
Erstaunlich, dass nach zwei Monaten immer noch so viele Server nicht gepatcht sind...
Jetzt patchen! Noch 60.000 #Exchange-Server für #ProxyNotShell-Attacken anfällig | heise online https://www.heise.de/news/Jetzt-patchen-Noch-60-000-Exchange-Server-fuer-ProxyNotShell-Attacken-anfaellig-7448029.html #Microsoft #MicrosoftExchange
#microsoftexchange #microsoft #ProxyNotShell #exchange
Referenced link: https://www.darkreading.com/cloud/rackspace-ransomware-attack-microsoft-exchange-server-zero-day-exploit
Originally posted by DarkReading / @DarkReading@twitter.com: https://twitter.com/DarkReading/status/1610781372389511169#m
Rackspace: Ransomware Attack Bypassed ProxyNotShell Mitigations https://www.darkreading.com/cloud/rackspace-ransomware-attack-microsoft-exchange-server-zero-day-exploit by @kjhiggins #ransomware #ProxyNotShell
Simodef · @simodef
5 followers · 17 posts · Server ioc.exchangeServidores de Exchange vulnerables a los ataques de ProxyNotShell
#ciberseguridad #ciberataques #Microsoft #vulnerable #ProxyNotShell #ciberprotégete
https://simodef.com/2023/01/04/mas-de-60-000-servidores-de-exchange-vulnerables-a-los-ataques-de-proxynotshell
#ciberseguridad #ciberataques #microsoft #vulnerable #ProxyNotShell #ciberprotegete
Marcel SIneM(S)US ☑️ · @simsus
108 followers · 1191 posts · Server social.tchncs.de
Jetzt patchen! Attacken auf #Exchange Server im #ProxyNotShell-Kontext gesichtet | heise online https://www.heise.de/news/Jetzt-patchen-Attacken-auf-Exchange-Server-im-ProxyNotShell-Kontext-gesichtet-7434860.html #Patchday #Microsoft
#microsoft #patchday #ProxyNotShell #exchange
Security Affairs RSS feed · @securityaffairs
1 followers · 150 posts · Server 0twitter.comPlay ransomware attacks use a new exploit to bypass ProxyNotShell mitigations on Exchange servers https://securityaffairs.co/wordpress/139897/cyber-crime/play-ransomware-bypass-proxynotshell-mitigation.html #informationsecuritynews #ITInformationSecurity #MicrosoftExchange #PierluigiPaganini #Playransomware #ProxyNotShell #BreakingNews #SecurityNews #hackingnews #CyberCrime #Cybercrime #Hacking #Malware
#informationsecuritynews #ITInformationSecurity #MicrosoftExchange #PierluigiPaganini #Playransomware #ProxyNotShell #BreakingNews #SecurityNews #hackingnews #CyberCrime #Hacking #Malware
Scripter ☑️ · @scripter
109 followers · 427 posts · Server social.tchncs.deJetzt patchen! #Attacken auf Exchange Server im #ProxyNotShell-Kontext gesichtet | heise online
https://heise.de/-7434860
Taggart: ~# :idle: · @mttaggart
2813 followers · 2888 posts · Server fosstodon.orgI went through the link hopping for you: here's the CrowdStrike script to detect #ProxyNotShell exploitation: https://github.com/CrowdStrike/OWASSRF/blob/main/Rps_Http-IOC.ps1
Günter Born · @gborn
598 followers · 2177 posts · Server social.tchncs.de
Seit dem 2. Dez. 2022 kämpft #Rackspace mit einem Ausfall seiner Exchange Hosting Instanzen. Nun wurde ein Ransomware-Befall als Ursache eingestanden. Sind die Opfer der #ProxyNotShell Schwachstelle?
Security Affairs RSS feed · @securityaffairs
1 followers · 37 posts · Server 0twitter.comPoC exploit code for ProxyNotShell Microsoft Exchange bugs released online https://securityaffairs.co/wordpress/138768/hacking/proxynotshell-microsoft-exchange-poc.html #informationsecuritynews #ITInformationSecurity #MicrosoftExchange #PierluigiPaganini #SecurityAffairs #CVE-2022-41082 #CVE-2022-4104 #ProxyNotShell #BreakingNews #SecurityNews #hackingnews #Hacking
#informationsecuritynews #ITInformationSecurity #PierluigiPaganini #SecurityAffairs #BreakingNews #hackingnews #Hacking #CVE #SecurityNews #MicrosoftExchange #ProxyNotShell
Mike · @miketheitguy
616 followers · 1266 posts · Server ioc.exchangeI wish I could post more about my trials and tribulations with running Microsoft Exchange over the years--but sadly I'd be walking a line that would be difficult to navigate. I will say this, however--DO NOT hold off on patches. Patch Day 1 on anything internet-facing, and monitor the fuck out of the stack otherwise. #infosec #cybersecurity #proxynotshell
#infosec #cybersecurity #ProxyNotShell
AaronJunker :verified: · @AaronJunker
39 followers · 45 posts · Server phpc.socialRT @GovCERT_CH@twitter.com
The critical vulnerability called #ProxyNotShell is being actively exploited and abused by cybercriminals. We are aware of 2,800 exposed Microsoft Exchange servers in CH🇨🇭Businesses and administrations are being urged to install security patches 🚨
👉 https://www.ncsc.admin.ch/proxynotshell-en
🐦🔗: https://twitter.com/GovCERT_CH/status/1593629555281068034
Fry · @fry
25 followers · 29 posts · Server blackhole.social#ProxyNotShell still not fixed. Exploitation started in August.
How is Exchange a paid product?
#cybersecurity #infosec #ProxyNotShell
The Hacker News · @hackernews_bot
612 followers · 780 posts · Server social.platypush.techReferenced link: https://thehackernews.com/2022/10/microsoft-issues-improved-mitigations.html
Discuss on https://discu.eu/q/https://thehackernews.com/2022/10/microsoft-issues-improved-mitigations.html
Originally posted by The Hacker News / @TheHackersNews@twitter.com: https://twitter.com/TheHackersNews/status/1578614794923278336#m
#Microsoft has released an improved mitigation method to prevent exploitation attempts against recently disclosed unpatched Exchange server vulnerabilities (CVE-2022-41040 and CVE-2022-41082).
Read: https://thehackernews.com/2022/10/microsoft-issues-improved-mitigations.html
#microsoft #infosec #cybersecurity #hacking #ProxyNotShell
ENISA · @enisa_eu
71 followers · 621 posts · Server respublicae.eu
#ProxyNotShell update:
To mitigate the latest Microsoft Exchange vulnerability #ENISA advises to implement EU #CSIRTsNetwork guidance: https://github.com/enisaeu/CNW/blob/main/advisories/CVE-2022-41040%20and%20CVE-2022-41082.md
#ProxyNotShell #ENISA #CSIRTsNetwork
CyberSec_EU 🇪🇺 · @Cybersec_EU
84 followers · 122 posts · Server respublicae.eu
RT @enisa_eu: #ProxyNotShell update:
To mitigate the latest Microsoft Exchange vulnerability #ENISA advises to implement EU #CSIRTsNetwork guidance: https://github.com/enisaeu/CNW/blob/main/advisories/CVE-2022-41040%20and%20CVE-2022-41082.md
🐦🔗: https://nitter.eu/Cybersec_EU/status/1576946717181632512
#ProxyNotShell #ENISA #CSIRTsNetwork