Security News > 2021 > March > The Week in Ransomware - March 12th 2021 - Encrypting Exchange servers

The Week in Ransomware - March 12th 2021 - Encrypting Exchange servers
2021-03-12 23:51

One overriding concern has been when will ransomware actors use the vulnerabilities to compromise and encrypt mail servers.

Last night our fears became a reality after ID-Ransomware creator Michael Gillespie revealed that the new DearCry Ransomware targeted Microsoft Exchange servers.

After BleepingComputer broke the DearCry ransomware story, Microsoft confirmed that the ransomware was being installed on servers compromised by the ProxyLogon exploits.

Ransomware now attacks Microsoft Exchange servers with ProxyLogon exploits.

Threat actors are now installing a new ransomware called 'DEARCRY' after hacking into Microsoft Exchange servers using the recently disclosed ProxyLogon vulnerabilities.

Michael Gillespie was the first to disclose that a new DearCry ransomware was targeting exchange servers.


News URL

https://www.bleepingcomputer.com/news/security/the-week-in-ransomware-march-12th-2021-encrypting-exchange-servers/