Researchers warn of increase in SSRF attacks on Microsoft Exchange
Bitdefender warns of an increase in cyberattacks on on-premises deployments of Microsoft Exchange Server 2013, 2016 and 2019.
The security company witnessed a recent rise in ProxyNotShell and OWASSRF, two tactics for attacks on Microsoft Exchange Server.
The tactics exploit two known vulnera... Read more
Hosted Rackspace Exchange hit by security incident
Rackspace's hosted Microsoft Exchange environment was hit by a "security incident". The services were initially taken offline, but have since been partly restored through a detour in Microsoft 365.
Rackspace announced that its Hosted Exchange environment was hit by a "security incident" last Fr... Read more
Attackers abuse OAuth applications to hack Microsoft Exchange servers
Microsoft warned of malicious OAuth applications attacking cloud users by hijacking Exchange servers. The cybercriminals aim to spread large amounts of spam.
According to Microsoft, cybercriminals have launched credential-stuffing attacks against users with Exchange accounts that lack multi-fact... Read more
Microsoft fixes Exchange bug that was blocking email traffic
Microsoft released a quick patch for a Microsoft Exchange server bug that occurred on January 1 of this year. The bug prevented on-premises Exchange servers from sending emails.
The problem was caused by date checks after the year change. The bug caused Exchange Server 2016 and Exchange Server 2... Read more