Zach Whittaker - Week in Security - volume 4, issue 17

Submitted by rbosaz on Sun, 04/25/2021 - 15:10

Check out Zack Whittaker's Week in Security Volume 4, Issue 17

Content Listing ...

  • Security Flaws in Cellebrite Hardware
  • Codecov Hack Allowed Hackers to Obtain Credentials
  • Facebook Downplays Breach in Internal Email
  • Passwordstate Supply Chain Attack Stole Data from 29,000 Enterprises
  • Clubhouse's Lurker Bug


Microsoft Exchange Servers Being Exploited Indiscriminately

Submitted by rbosaz on Tue, 03/09/2021 - 17:07

Microsoft released patches for 0-day exploits last week, but looks like hackers may have heard about the release of the patch. And so hackers began mass scans the week before. Even though you patched your server last week, you may have been compromised. The first thing you should do is backup all your Exchange Server's data and store the backup off-line.  Then check if you have been PWNED via Check My OWA.

Here's some detailed articles: