Attacking MS Exchange Web Interfaces

cyber

Exchange is basically a mail server that supports a bunch of Microsoft protocols. It’s usually located on subdomains named autodiscover, mx, owa or mail, and it can also be detected by existing /owa/, /ews/, /ecp/, /oab/, /autodiscover/, /Microsoft-Server-ActiveSync/, /rpc/, /powershell/ endpoints on the web server. The knowledge about how to attack Exchange is crucial for every penetration testing team. […]

Ryuk Ransomware Keeps Targeting Hospitals During the Pandemic

cyber

The Ryuk Ransomware operators to continue to target hospitals even as these organizations are overwhelmed during the Coronavirus pandemic. Last week BleepingComputer contacted various ransomware groups and asked if they would target hospitals and other healthcare organizations during the pandemic. With the amount of strain healthcare organizations are under during this pandemic, […]

Microsoft Leaks Info on Wormable Windows SMBv3 CVE-2020-0796 Flaw

cyber

Critical bug in Microsoft’s SMBv3 implementation published under mysterious circumstances. Word leaked out on Tuesday of a new vulnerability in recent versions of Windows that has the potential to unleash the kind of self-replicating attacks that allowed the WannaCry and NotPetya worms to cripple business networks around the world. The […]

Croatia’s largest petrol station chain impacted by cyber-attack

cyber

A security incident described as « a cyber-attack » has crippled some business operations at INA Group, Croatia’s biggest oil company, and its largest petrol station chain. The attack took place last Friday, on February 14, at 22:00, local time, the company said. Multiple sources have told ZDNet the cyber-attack is a […]

le Nigéria et autres pays africains sous la menace d’une cyberattaque bancaire

cyber

La plus grande économie d’Afrique, le Nigeria, aux côtés d’autres pays d’Afrique subsaharienne, est désormais la cible d’attaques d’un groupe de piratage russe, ont révélé des enquêtes menées par des chercheurs de Kaspersky Lab, un fournisseur multinational de cybersécurité et d’antivirus, mais aussi ont signalé des milliers de notifications alarmantes d’attaques contre les principales banques d’Afrique subsaharienne.

ONU piraté due à une vulnérabilité dans SharePoint

cyber

L’ONU n’a pas divulgué publiquement une attaque de piratage majeure dans ses systèmes informatiques en Europe – une décision qui pourrait mettre le personnel, d’autres organisations et des individus en danger, selon les défenseurs de la protection des données. Le 30 août 2019, des responsables informatiques travaillant dans les bureaux […]