Microsoft Exchange

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

Weekly Top 10: 11.18.2024: Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More

November 18, 2024 16:00 GMT

Weekly Top 10 – 02.19.2024- Critical Microsoft Exchange Vulnerability, North Korean APT Breached South Korean Presidential Staff, GoldPickaxe iOS Malware Captures Facial Recognition Data, and More.

WEEKLY TOP TEN: February 19, 2024, 15:00 GMT Our Threat Operations and Intelligence team compiles a daily digest…

February 19, 2024 15:00 GMT

Weekly Top 10 – 7.24.2023 – MS Exchange malware, WormGPT, Citrix Exploit

Threat actors exploiting Citrix, Microsoft Exchange malware control centers, Advanced Android surveillanceware, and 7 more cybersecurity stories...

July 27, 2023 15:24 GMT

Weekly Top Ten Cybersecurity Stories – 1.13.2023

CISA adds Exchange privilege escalation bug to "known exploited" catalog, Fake AnyDesk websites deploying info stealer, multiple Cisco router models hit by no-workaround vulnerability, and 7 more...

January 13, 2023 16:23 GMT

Increased Scanning Activity for Recent Exchange SSRF Vulnerabilities

OCTOBER 24, 2022 21:18 GMT Attempts to exploit the chained attack utilizing CVE-2022-41040 and CVE-2022-41082 are being observed…

October 24, 2022 21:16 GMT

Microsoft Warns of Two Actively-Exploited Exchange Zero-Days

SEPTEMBER 30, 2022 19:35 GMT This alert from Pillr is intended to brief users and administrators on newly…

September 30, 2022 22:44 GMT

Weekly Top Ten Cybersecurity Stories – 9.30.2022

Microsoft Exchange Zero-Day CVE-2022-41040 and CVE-2022-41082, Malicious vSphere Installers, Okta subsidiary discloses code repo breach, Powerpoint phishing to deploy Graphite Malware

September 30, 2022 17:25 GMT

Weekly Top Ten Cybersecurity Stories – 7.8.2022

Microsoft WebView2 MFA Bypass, AstraLocker Smash 'n Grab, OpenSSL Memory Corruption Vuln, UnRAR Arbitrary Code Execution

July 8, 2022 11:52 GMT

Weekly Top Ten Cybersecurity Stories – 7.1.2022

Microsoft WebView2 MFA Bypass, AstraLocker Smash 'n Grab, OpenSSL Memory Corruption Vuln, UnRAR Arbitrary Code Execution

July 1, 2022 12:55 GMT

Hand-Picked Top-Read Stories

The Risks of Cybersecurity Vulnerabilities: How They’re Impacting Public Utilities

Why is DDoS Still So Effective After 20 Years?

Weekly Top 10: 12.16.2024: OpenWrt Flaw Allows Distribution of Malicious Firmware; Vulnerability in WPForms Allows for Arbitrary Stripe Refunds; AuthQuake Attack Allows MFA Bypass for Microsoft Accounts, and More.

Trending Tags

Microsoft Exchange

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

Weekly Top 10 – 02.19.2024- Critical Microsoft Exchange Vulnerability, North Korean APT Breached South Korean Presidential Staff, GoldPickaxe iOS Malware Captures Facial Recognition Data, and More.

Weekly Top 10 – 7.24.2023 – MS Exchange malware, WormGPT, Citrix Exploit

Weekly Top Ten Cybersecurity Stories – 1.13.2023

Increased Scanning Activity for Recent Exchange SSRF Vulnerabilities

Microsoft Warns of Two Actively-Exploited Exchange Zero-Days

Weekly Top Ten Cybersecurity Stories – 9.30.2022

Weekly Top Ten Cybersecurity Stories – 7.8.2022

Weekly Top Ten Cybersecurity Stories – 7.1.2022

Threat Advisories

Weekly Top 10: 12.16.2024: OpenWrt Flaw Allows Distribution of Malicious Firmware; Vulnerability in WPForms Allows for Arbitrary Stripe Refunds; AuthQuake Attack Allows MFA Bypass for Microsoft Accounts, and More.

Weekly Top 10: 12.9.2024: New Windows Zero-Day Exposes NTLM Credentials, Gets Unofficial Patch; Supply Chain Attack Detected in Solana’s web3.js Library; Snowblind: The Invisible Hand of Secret Blizzard, and More.

Weekly Top 10: 11.25.2024: Critical Flaw in End-of-Life D-Link VPN Routers; Actively Exploited RCE Flaw Impacting VMware vCenter; Russian Linked Threat Actor Linked in Cyber Espionage Campaign, and More.

Palo Alto Recommends Urgent Mitigation For Authentication Bypass Vulnerability in PAN-OS

Weekly Top 10: 11.11.2024: Veeam Backup Exploit Used by Frag Ransomware; North Korean Hackers Use macOS Malware to Steal Crypto; Palo Alto PAN-OS May be Vulnerable to RCE, and More.

Education

Protecting Microsoft Teams From Data Exfiltration – A Tactical DLP Rule

Anatomy of a Data Breach

OpenAI Cybersecurity Research

Breach Report: Healthcare

Analysis of GalComm Chrome Extension Malware