Microsoft Exchange Bug Exposes ~100,000 Windows Domain Credentials – Tempemail

An unpatched design flaw in the implementation of Microsoft Exchange’s Autodiscover protocol has resulted in the leak of approximately 100,000 login names and passwords for Windows domains worldwide. “This is a severe security issue, since if an attacker can control such domains or has the ability to ‘sniff’ traffic in Continue Reading

US Sanctions Cryptocurrency Exchange SUEX for Aiding Ransomware Gangs – Tempemail

The U.S. Treasury Department on Tuesday imposed sanctions on Russian cryptocurrency exchange Suex for helping facilitate and launder transactions from at least eight ransomware variants as part of the government’s efforts to crack down on a surge in ransomware incidents and make it difficult for bad actors to profit from Continue Reading

Traffic Exchange Networks Distributing Malware Disguised as Cracked Software – Tempemail

An ongoing campaign has been found to leverage a network of websites acting as a “dropper as a service” to deliver a bundle of malware payloads to victims looking for “cracked” versions of popular business and consumer applications. “These malware included an assortment of click fraud bots, other information stealers, Continue Reading

New Microsoft Exchange ‘ProxyToken’ Flaw Lets Attackers Reconfigure Mailboxes – Tempemail

Details have emerged about a now-patched security vulnerability impacting the Microsoft Exchange Server that could be weaponized by an unauthenticated attacker to modify server configurations, thus leading to the disclosure of Personally Identifiable Information (PII). The issue, tracked as CVE-2021-33766 (CVSS score: 7.3) and coined “ProxyToken,” was discovered by Le Continue Reading

Microsoft Exchange Under Attack With ProxyShell Flaws; Over 1900 Servers Hacked! – Tempemail

The U.S. Cybersecurity and Infrastructure Security Agency is warning of active exploitation attempts that leverage the latest line of “ProxyShell” Microsoft Exchange vulnerabilities that were patched earlier this May, including deploying LockFile ransomware on compromised systems. Tracked as CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207, the vulnerabilities enable adversaries to bypass ACL controls, Continue Reading

Hackers Actively Searching for Unpatched Microsoft Exchange Servers – Tempemail

Threat actors are actively carrying out opportunistic scanning and exploitation of Exchange servers using a new exploit chain leveraging a trio of flaws affecting on-premises installations, making them the latest set of bugs after ProxyLogon vulnerabilities were exploited en masse at the start of the year. The remote code execution Continue Reading

Chinese Hackers Implant PlugX Variant on Compromised MS Exchange Servers – Tempemail

A Chinese cyberespionage group known for targeting Southeast Asia leveraged flaws in the Microsoft Exchange Server that came to light earlier this March to deploy a previously undocumented variant of a remote access trojan (RAT) on compromised systems. Attributing the intrusions to a threat actor named PKPLUG (aka Mustang Panda Continue Reading

US and Global Allies Accuse China of Massive Microsoft Exchange Attack – Tempemail

The U.S. government and its key allies, including the European Union, the U.K, and NATO, formally attributed the massive cyberattack against Microsoft Exchange email servers to state-sponsored hacking crews working affiliated with the People’s Republic of China’s Ministry of State Security (MSS). In a statement issued by the White House Continue Reading

Prometei Botnet Exploiting Unpatched Microsoft Exchange Servers – Tempemail

Attackers are exploiting the ProxyLogon Microsoft Exchange Server flaws to co-opt vulnerable machines to a cryptocurrency botnet named Prometei, according to new research. “Prometei exploits the recently disclosed Microsoft Exchange vulnerabilities associated with the HAFNIUM attacks to penetrate the network for malware deployment, credential harvesting and more,” Boston-based cybersecurity firm Continue Reading

Coinbase, US’s largest cryptocurrency exchange, makes Nasdaq debut | Cryptocurrencies

The soaring value of cryptocurrencies added another name to the list of the world’s wealthiest billionaires on Wednesday with the introduction of Coinbase, the US’s largest cryptocurrency exchange, on to the Nasdaq stock exchange. Brian Armstrong, Coinbase’s CEO and co-founder, has a 20% stake in the company which analysts expected Continue Reading