- News |
-
- Featured
-
Canada’s privacy commissioner launches investigation over the use..
As the years pass by, technology also widens, and more and more are being discovered. From simple gadgets..
- Business |
-
- Featured
-
Be an informer to I-T dept; earn up..
Sharing "specific information" with the income tax department about any benami..
- Tech & Industry |
-
- Featured
-
Gravitational wave event likely signaled birth of black..
The merger of two neutron stars that generated gravitational waves detected last year may have led to the birth..
- Entertainment |
-
- Topics
- Malayalam Film
- Media
- Music
- Youth
-
- Featured
-
Shawn Mendes Released Highly Anticipated Self-Titled Album Today
Los Angeles, CA : Multi-Platinum singer/songwriter Shawn Mendes released his highly anticipated self-titled third album today, via Island Records. Get..
-
- New Products |
-
- Topics
- General
-
- Featured
-
ZOTAC Introduces Its GeForce GTX 960 series graphics..
Dubai- ZOTAC International, a leading innovator and manufacturer of graphic cards and mini-
-
- Education |
-
- Topics
- Campus News
-
- Featured
-
ITM University, Gurgaon Student Palash Chhabra Represents Varsity..
New Delhi: Palash Chhabra, a student of ITM University,..
-
- Health |
-
- Topics
- Medical News
-
- Featured
-
Maharshi Shushruta, The Great Grandfather of Surgery!
by Ayurvedacharya Dr.Hitesh Jani Dr.Hitesh Jani
-
- Tourism |
-
- Topics
- Travel
- Food&Beverages
- Hospitality
-
- Featured
-
“Keraliya Ayurveda is Credible and Authentic”
Irina Gurjeva Irina Gurjeva is not just another vacationer in..
-
- Sports |
- Editor's column |
- Magazine |
Hive ransomware targeting MSFT Exchange via ProxyShell Vulns: Comment from Tenable
Published on April 22, 2022
“Attackers continue to exploit the ProxyShell vulnerabilities that were initially disclosed more than eight months ago. They have proven to be a reliable resource for attackers since their disclosure, despite patches being available. The latest attacks by an affiliate of the Hive ransomware group are enabled by the ubiquity of Microsoft Exchange and apparent delays in patching these months-old vulnerabilities. Organizations around the world in diverse sectors use Microsoft Exchange for critical business functions, making it an ideal target for threat actors.
“The exploit chain allows attackers to elevate privileges and then execute code remotely, and the availability of proofs-of-concept makes it easy for them to adopt into their playbooks.
“Because the ProxyShell chain goes from feature bypass, to privilege escalation, to remote code execution, it reduces the amount of reconnaissance and intermediate steps required for attackers to infiltrate target systems.” — Claire Tills, Senior Research Engineer at Tenable
