Technical Advisory: Proxy*Hell Exploit Chains in the Wild | allinfosecnews.com

Jan. 24, 2023, 11:25 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

At the end of November 2022, experts from Bitdefender Labs started to notice an increase in attacks using ProxyNotShell/OWASSRF exploits chains to target on-premises Microsoft Exchange deployments. SSRF attacks on Microsoft Exchange servers are some of the most popular and routinely exploited vulnerabilities. We decided to release a technical advisory describing these attacks, but also documenting some of the recent attacks that we’ve detected in the wild.

Article Link: Technical Advisory: Proxy*Hell Exploit Chains in the Wild

1 post - …

advisory article attacks bitdefender end exchange experts exploit exploited exploits labs link microsoft microsoft exchange notice november owassrf popular proxy release servers ssrf target technical vulnerabilities

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Change Healthcare hasn't given VA details on hack-impacted veterans, top lawmaker says 5 hours ago | malware.news

change change healthcare hack healthcare +4

Two years in, Google says passkeys now protect more than 400 million accounts 5 hours ago | malware.news

account accounts article google +7

CVE-2024-2887: A Pwn2Own Winning Bug in Google Chrome 6 hours ago | malware.news

blog browsers bug chrome +19

How to Talk to The Board About Exposure 6 hours ago | malware.news

Pro-Russia hackers target OT weaknesses in critical infrastructure 6 hours ago | malware.news

american article breaches critical +21

Watch out for tech support scams lurking in sponsored search results 6 hours ago | malware.news

blog blog post campaign home +12

Threat Intelligence Snapshot: Week 18, 2024 6 hours ago | malware.news

access amp april find +13

CISA: Immediate GitLab account takeover flaw remediation crucial amid attacks 7 hours ago | malware.news

account account takeover agency article +30

Increased stealth introduced in updated Zloader malware 7 hours ago | malware.news

analysis anti-analysis article banking +18

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Information Security Engineer, Sr. (Container Hardening)

@ Rackner | San Antonio, TX

View on infosec-jobs.com

BaaN IV Techno-functional consultant-On-Balfour

@ Marlabs | Piscataway, US

View on infosec-jobs.com

Senior Security Analyst

@ BETSOL | Bengaluru, India

View on infosec-jobs.com

Security Operations Centre Operator

@ NEXTDC | West Footscray, Australia

View on infosec-jobs.com

Senior Network and Security Research Officer

@ University of Toronto | Toronto, ON, CA

View on infosec-jobs.com