This is a crazy story. A Cyber Security researcher reports a Remote Code Execution chain to Microsoft, who in turn issue an out-of-band patch to the world, but someone already has their hands on the exploit. How did this happen? Here, I lay down my thoughts.

USEFUL LINKS
============
https://www.microsoft.com/security/blog/2021/03/02/hafnium-targeting-exchange-servers/
https://www.volexity.com/blog/2021/03/02/active-exploitation-of-microsoft-exchange-zero-day-vulnerabilities/
https://proxylogon.com/
https://unit42.paloaltonetworks.com/microsoft-exchange-server-attack-timeline/
https://twitter.com/orange_8361/status/1346401788811825153
https://www.microsoft.com/en-us/msrc/mapp
https://www.wsj.com/articles/microsoft-probing-whether-leak-played-role-in-suspected-chinese-hack-11615575793

FOLLOW FOR MORE
================
If you LIKE the video, please hit the THUMBS UP 👍
If you loved it, please SUBSCRIBE

Also, follow me for more content on https://twitter.com/cybercdh

Peace ✌️