Monthly Security Digest for August
Every month, we are covering the major security events for our clients. Please find an exclusive selection below.
Attackers Scan Microsoft Exchange Servers For ProxyShell Flaws
Threat actors are actively scanning for the Microsoft Exchange ProxyShell remote code execution vulnerabilities after technical details were shared by researchers at the Black Hat conference. ProxyShell represents three vulnerabilities that perform unauthenticated, remote code execution on Microsoft Exchange servers when chained together.
CISA Warns Users To Patch Exchange ProxyShell Bugs
The US Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert warning users of an urgent alert in which attackers are actively attacking ProxyShell vulnerabilities in unpatched Microsoft Exchange Servers. Security Researchers at Huntress have reported attacks throughout August exploiting the ProxyShell vulnerabilities once the exploit code was published.
DarkSide Ransomware Returns as BlackMatter
Researchers have found encryption algorithms in a decryptor that indicated that the DarkSide ransomware gang has been rebranded as BlackMatter ransomware operation and is actively performing attacks on corporate entities. The ransomware gang had shut down in May after losing its servers.
[..]
Back to all insights