Security News

LockFile ransomware attacks Microsoft Exchange with ProxyShell exploits
2021-08-21 15:05

A new ransomware gang known as LockFile encrypts Windows domains after hacking into Microsoft Exchange servers using the recently disclosed ProxyShell vulnerabilities. ProxyShell is the name of an attack consisting of three chained Microsoft Exchange vulnerabilities that result in unauthenticated, remote code execution.

Japanese cryptocoin exchange robbed of $100,000,000
2021-08-20 16:01

Important Notice: We are sorry to announce that #LiquidGlobal warm wallets were compromised, we are moving assets into the cold wallet. In a cold wallet setup, the files that constitute your cryptocoin stash are inaccessible to malware or hackers who manage to wriggle into your computer, thanks to being kept offline, and unusable in the event of an intruder in your house finding the storage device on which you stashed them, thanks to being encrypted.

Liquid cryptocurency exchange loses over $90 million following hack
2021-08-19 09:24

Japan-based cryptocurrency exchange Liquid has suspended deposits and withdrawals after attackers have compromised its warm wallets. Liquid is one of the largest cryptocurrency-fiat exchange platforms worldwide.

Liquid cryptocurrency exchange loses $94 million following hack
2021-08-19 09:24

Japan-based cryptocurrency exchange Liquid has suspended deposits and withdrawals after attackers have compromised its warm wallets. Liquid is one of the largest cryptocurrency-fiat exchange platforms worldwide.

Nutanix Federal Innovation Lab launches, powered by Cyxtera’s digital exchange and Enterprise Bare Metal
2021-08-17 23:40

Nutanix and Cyxtera announced their partnership to launch the first Nutanix Federal Innovation Lab, powered by Cyxtera's digital exchange and Enterprise Bare Metal. The Federal Innovation Lab, located in a Cyxtera data center in Northern Virginia, provides U.S. Federal customers as well as industry partners with an environment to build proofs of concept and test mission-critical applications using on-demand infrastructure that readily supports hybrid multicloud solutions via a single operating platform.

How to Reduce Exchange Server Downtime in Case of a Disaster?
2021-08-17 13:00

Exchange Server downtime may occur at any point in time due to several reasons, such as malware attack, server crash, database corruption, and hardware or software-related issues/incompatibility. Exchange Server downtime is inevitable, especially when your organization relies on a standalone on-premises Exchange server.

Exchange Servers Under Active Attack via ProxyShell Bugs
2021-08-13 18:56

In his Black Hat presentation last week, Devcore principal security researcher Orange Tsai said that a survey shows more than 400,000 Exchange servers on the internet that are exposed to the attack via port 443. Breakdown of Exchange servers on Shodan vulnerable to ProxyShell or ProxyLogon, it's just under 50% of internet facing Exchange servers.

Hackers Deploying Backdoors on Exchange Servers via ProxyShell Vulnerabilities
2021-08-13 10:08

Threat actors have started exploiting the recently disclosed Microsoft Exchange Server vulnerabilities to deliver web shells that give them access to the compromised system. Orange Tsai, principal researcher at security consulting firm DEVCORE, recently disclosed the details of three Exchange vulnerabilities that can be exploited by remote, unauthenticated attackers to take control of vulnerable servers.

Hackers Actively Searching for Unpatched Microsoft Exchange Servers
2021-08-13 02:46

Threat actors are actively carrying out opportunistic scanning and exploitation of Exchange servers using a new exploit chain leveraging a trio of flaws affecting on-premises installations, making them the latest set of bugs after ProxyLogon vulnerabilities were exploited en masse at the start of the year. The remote code execution flaws have been collectively dubbed "ProxyShell." At least 30,000 machines are affected by the vulnerabilities, according to a Shodan scan performed by Jan Kopriva of SANS Internet Storm Center.

Hackers Actively Searching for Unpatched Microsoft Exchange Servers
2021-08-13 02:46

Threat actors are actively carrying out opportunistic scanning and exploitation of Exchange servers using a new exploit chain leveraging a trio of flaws affecting on-premises installations, making them the latest set of bugs after ProxyLogon vulnerabilities were exploited en masse at the start of the year. The remote code execution flaws have been collectively dubbed "ProxyShell." At least 30,000 machines are affected by the vulnerabilities, according to a Shodan scan performed by Jan Kopriva of SANS Internet Storm Center.