Exchange Servers Under Active Attack via ProxyShell Bugs
Exchange Servers Under Active Attack via ProxyShell Bugs
Apple has fixed a flaw that was letting hackers spy on devices without users even clicking a link. The zero-click hack gave access to device cameras, microphones, and messages without users knowing. Apple is telling users to update their iPhones, Macs, and Apple Watches immediately to protect them. Loading Something is loading. Apple is warning…
Military-grade spyware technology was used to hack the smartphones of journalists, activists, and executives, The Washington Post reported. Some of the affected journalists worked at outlets including CNN and The New York Times. The 37 numbers appeared on a list of 50,000 phone numbers in countries with a history of conducting surveillance on their own…
A joint advisory warns admins of the likelihood of APT groups exploiting three vulnerabilities in the Fortinet FortiOS. Editor’s Note: This story was updated on April 2 at 5:35 PM ET to include Fortinet’s statement. The FBI and Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) today issued a joint advisory warning admins…
“Microsoft has implemented an automatic mitigation tool within Defender Antivirus to tackle critical vulnerabilities in Exchange Server,” reports ZDNet: On March 18, the Redmond giant said the software will automatically mitigate CVE-2021-26855, a severe vulnerability that is being actively exploited in the wild. This vulnerability is one of four that can be used in a…
Autodesk has confirmed that it was also targeted by the Russian state hackers behind the large-scale SolarWinds Orion supply-chain attack, almost nine months after discovering that one of its servers was backdoored with Sunburst malware. The US software and services company provides millions of customers from the design, engineering, and construction sectors with CAD (computer-aided design),…
CVE-2021-1572