Security Affairs

MARCH 12, 2021

On March 2nd, Microsoft released emergency out-of-band security updates that address four zero-day issues (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065) in all supported MS Exchange versions that are actively exploited in the wild. 2/5 — ESET research (@ESETresearch) March 2, 2021.

Authentication 125

Authentication Military Ransomware Manufacturing 125

Security Affairs

NOVEMBER 17, 2021

The Microsoft Threat Intelligence Center (MSTIC) shared the results of their analysis on the evolution of Iran-linked threat actors at the CyberWarCon 2021. Over the past 12 months, MSTIC experts observed increasingly sophisticated attacks orchestrated by Iranian APT groups. ” reads the post published by Microsoft.

Ransomware 106

Ransomware Passwords Military Authentication 106

eSecurity Planet

MARCH 26, 2021

Specifically, the tool targets the CVE-2021-26855 vulnerability. This vulnerability allows an attacker to make an untrusted connection to Exchange server port 443, allowing them to send arbitrary HTTP requests and authenticate as the Exchange server. Even after running the tool, existing and future updates should still be applied.

Ransomware 57

Ransomware Authentication Financial Services Military 57