Security News > 2021 > April > FBI Clears ProxyLogon Web Shells from Hundreds of Orgs
The Feds have cleared malicious web shells from hundreds of vulnerable computers in the United States that had been compromised via the now-infamous ProxyLogon Microsoft Exchange vulnerabilities.
"Many infected system owners successfully removed the web shells from thousands of computers," explained the Department of Justice, in a Tuesday announcement.
"Others appeared unable to do so, and hundreds of such web shells persisted unmitigated."
This state of affairs prompted the FBI to take action; in a court-authorized action, it issued a series of commands through the web shells to the affected servers.
The commands were designed to cause the server to delete only the web shells.
"Today's court-authorized removal of the malicious web shells demonstrates the Department's commitment to disrupt hacking activity using all of our legal tools, not just prosecutions," said Assistant Attorney General John Demers for the DoJ's National Security Division, in the statement.