all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Microsoft: Cuba ransomware hacking Exchange servers via OWASSRF flaw

Add to bookmarks
Jan. 12, 2023, 7:53 p.m. | Sergiu Gatlan

BleepingComputer www.bleepingcomputer.com

Microsoft says Cuba ransomware threat actors are hacking their way into victims' networks via Microsoft Exchange servers unpatched against a critical server-side request forgery (SSRF) vulnerability also exploited in Play ransomware attacks. [...]

attacks critical cuba cuba ransomware exchange exploited flaw forgery hacking microsoft microsoft exchange networks owassrf play play ransomware ransomware ransomware attacks request security server servers server-side request forgery ssrf threat threat actors unpatched vulnerability

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

Telegram is down with "Connecting" error 8 hours ago | www.bleepingcomputer.com
apps down error mobile +5
Fake job interviews target developers with new Python backdoor 11 hours ago | www.bleepingcomputer.com
access backdoor campaign dev +18
Kaiser Permanente: Data breach may impact 13.4 million patients 16 hours ago | www.bleepingcomputer.com
breach data data breach data security +15
FBI warns against using unlicensed crypto transfer services 1 day, 4 hours ago | www.bleepingcomputer.com
can crypto cryptocurrency down +13
LA County Health Services: Patients' data exposed in phishing attack 1 day, 5 hours ago | www.bleepingcomputer.com
attack breach data data breach +14
LA County Health Services: Patients' data exposed in phishing attack 1 day, 5 hours ago | www.bleepingcomputer.com
attack breach care data +21
Researchers sinkhole PlugX malware server with 2.5 million unique IPs 1 day, 6 hours ago | www.bleepingcomputer.com
addresses command command and control connections +11
Reddit down in major outage blocking access to web, mobile apps 1 day, 8 hours ago | www.bleepingcomputer.com
access apps blocking down +11
Over 1,400 CrushFTP servers vulnerable to actively exploited bug 1 day, 8 hours ago | www.bleepingcomputer.com
actively exploited attacks bug critical +16

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Engineer 2

@ Oracle | BENGALURU, KARNATAKA, India
View on infosec-jobs.com

Oracle EBS DevSecOps Developer

@ Accenture Federal Services | Arlington, VA
View on infosec-jobs.com

Information Security GRC Specialist - Risk Program Lead

@ Western Digital | Irvine, CA, United States
View on infosec-jobs.com

Senior Cyber Operations Planner (15.09)

@ OCT Consulting, LLC | Washington, District of Columbia, United States
View on infosec-jobs.com

AI Cybersecurity Architect

@ FactSet | India, Hyderabad, DVS, SEZ-1 – Orion B4; FL 7,8,9,11 (Hyderabad - Divyasree 3)
View on infosec-jobs.com
View more jobs