all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

New PowerExchange Backdoor Used in Iranian Cyber Attack on UAE Government

Add to bookmarks
May 25, 2023, 1:39 p.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

An unnamed government entity associated with the United Arab Emirates (U.A.E.) was targeted by a likely Iranian threat actor to breach the victim's Microsoft Exchange Server with a "simple yet effective" backdoor dubbed PowerExchange.
According to a new report from Fortinet FortiGuard Labs, the intrusion relied on email phishing as an initial access pathway, leading to the execution of a .NET

actor attack backdoor breach cyber email email phishing emirates exchange exchange server fortinet fortinet fortiguard labs government intrusion iranian labs microsoft microsoft exchange microsoft exchange server phishing report server simple threat threat actor uae united united arab emirates victim

Visit resource

More from thehackernews.com / The Hacker News

North Korean Hackers Deploy New Golang Malware 'Durian' Against Crypto Firms 6 hours ago | thehackernews.com
actor attacks backdoor commands +20
CensysGPT: AI-Powered Threat Hunting for Cybersecurity Pros (Webinar) 8 hours ago | thehackernews.com
advanced ai-powered ai tools artificial +19
Chrome Zero-Day Alert — Update Your Browser to Patch New Vulnerability 11 hours ago | thehackernews.com
actively exploited address alert anonymous +25
What's the Right EDR for You? 11 hours ago | thehackernews.com
and response antivirus business businesses +18
Malicious Android Apps Pose as Google, Instagram, WhatsApp, Spread via Smishing 11 hours ago | thehackernews.com
android android app android apps app +20
Researchers Uncover 'LLMjacking' Scheme Targeting Cloud-Hosted AI Models 13 hours ago | thehackernews.com
access ai models attack cloud +24
New TunnelVision Attack Allows Hijacking of VPN Traffic via DHCP Manipulation 1 day, 3 hours ago | thehackernews.com
attack bypass cve cve-2024 +25
Kremlin-Backed APT28 Targets Polish Institutions in Large-Scale Malware Campaign 1 day, 6 hours ago | thehackernews.com
actor apt28 called campaign +23
New Guide: How to Scale Your vCISO Services Profitably 1 day, 10 hours ago | thehackernews.com
access business can ciso +18

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Chief Information Security Officer (CISO)

@ CSIRO | Adelaide, SA, AU
View on infosec-jobs.com

Cyber Security Engineer - Clearance Required

@ Logistics Management Institute | Remote, United States
View on infosec-jobs.com

Security Engineer, Infrastructure

@ Meta | Bellevue, WA | Menlo Park, CA | Washington, DC | New York City
View on infosec-jobs.com

TS Senior Security Engineer

@ UL Solutions | Mumbai, Maharashtra, India
View on infosec-jobs.com

Security Operations Engineer

@ Fortis Games | Remote - United Kingdom
View on infosec-jobs.com

Senior Product Compliance Engineer

@ Element Biosciences | San Diego - Headquarters
View on infosec-jobs.com
View more jobs