Cyber Defender REACTS to THEFT of Microsoft Exchange Server ZERO DAYS used by HAFNIUM |
|
This is a crazy story. A Cyber Security researcher reports a Remote Code Execution chain to Microsoft, who in turn issue an out-of-band patch to the world, but someone already has their hands on the exploit. How did this happen? Here, I lay down my thoughts.
USEFUL LINKS ============ https://www.microsoft.com/security/blog/2021/03/02/hafnium-targeting-exchange-servers/ https://www.volexity.com/blog/2021/03/02/active-exploitation-of-microsoft-exchange-zero-day-vulnerabilities/ https://proxylogon.com/ https://unit42.paloaltonetworks.com/microsoft-exchange-server-attack-timeline/ https://twitter.com/orange_8361/status/1346401788811825153 https://www.microsoft.com/en-us/msrc/mapp https://www.wsj.com/articles/microsoft-probing-whether-leak-played-role-in-suspected-chinese-hack-11615575793 FOLLOW FOR MORE ================ If you LIKE the video, please hit the THUMBS UP 👍 If you loved it, please SUBSCRIBE Also, follow me for more content on https://twitter.com/cybercdh Peace ✌️ |