Rackspace ransomware attack was executed by using previously unknown security exploit

The MS Exchange exploit chain recently revealed by Crowdstrike researchers is how the Play ransomware gang breached the Rackspace Hosted Exchange email environment, the company confirmed last week. The exploit chains CVE-2022-41082, a RCE flaw, and CVE-2022-41080, a privilege escalation vulnerability, to achieve unrestricted remote access to vulnerable MS Exchange setups. “We will be sharing more detailed information with our customers and peers in the security community so that, collectively, we can all better defend … More →

The post …

0 day access attack breached community crowdstrike customers cve cve-2022-41080 cve-2022-41082 don't miss email email security environment escalation exchange exploit flaw information microsoft exchange ms exchange play play ransomware privilege privilege escalation rackspace ransomware ransomware attack ransomware gang rce remote access researchers security sharing the company trend micro vulnerability vulnerable