all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Microsoft updates guidance for ‘ProxyNotShell’ bugs after researchers get around mitigations

Add to bookmarks
Oct. 5, 2022, 8:30 p.m. | Jonathan Greig

The Record by Recorded Future therecord.media

Microsoft has updated the guidance it provided for two zero-day vulnerabilities discovered last week affecting Exchange Server software. The original guidance provided for the bugs, which are known colloquially as “ProxyNotShell”, was found to be insufficient in addressing the issues, according to several security researchers who spent the weekend examining it.  Dray Agha, senior threatOps […]


The post Microsoft updates guidance for ‘ProxyNotShell’ bugs after researchers get around mitigations appeared first on The Record by Recorded Future.

bugs cve-2022-41040 cve-2022-41082 cybercrime guidance industry microsoft microsoft exchange microsoft updates mitigations nation state :proxynotshell proxyshell researchers updates vulnerability zero-day

Visit resource

More from therecord.media / The Record by Recorded Future

More than 800 vulnerabilities resolved through CISA ransomware notification pilot 5 hours ago | therecord.media
cisa government industry notification +4
Bogus post office texts deliver a ‘shocking’ amount of traffic to scam websites 6 hours ago | therecord.media
bogus cybercrime industry office +6
Digital rights watchdogs warn against internet shutdowns in Togo ahead of elections 10 hours ago | therecord.media
digital digital rights elections government +5
DHS asked to consider potentially 'devastating’ impact of hacks on rural water systems 12 hours ago | therecord.media
dhs government hacks impact +7
Feds accuse founders of cryptocurrency mixer of ‘large-scale money laundering’ 1 day, 4 hours ago | therecord.media
cryptocurrency cryptocurrency mixer cybercrime founders +7
CISA: Cisco and CrushFTP vulnerabilities need urgent patches 1 day, 7 hours ago | therecord.media
cisa cisco crushftp industry +4
Plasma donation company Octapharma slowly reopening as BlackSuit gang claims attack 1 day, 8 hours ago | therecord.media
attack blacksuit claims cybercrime +2
France seeks new EU sanctions to target Russian disinformation 1 day, 9 hours ago | therecord.media
disinformation elections france government +4
Anti-Trump PAC Lincoln Project scammed for $35,000 after vendor email hack 1 day, 10 hours ago | therecord.media
cybercrime elections email hack +6

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Regional Leader, Cyber Crisis Communications

@ Google | United Kingdom
View on infosec-jobs.com

Regional Intelligence Manager, Compliance, Safety and Risk Management

@ Google | London, UK
View on infosec-jobs.com

Senior Analyst, Endpoint Security

@ Scotiabank | Toronto, ON, CA, M1K5L1
View on infosec-jobs.com

Software Engineer, Security/Privacy, Google Cloud

@ Google | Bengaluru, Karnataka, India
View on infosec-jobs.com

Senior Security Engineer

@ Coinbase | Remote - USA
View on infosec-jobs.com
View more jobs