One (CVE-2022-41040) is a is a Server-Side Request Forgery (SSRF) vulnerability, an exploit that allows attackers to make server-side application requests from an unintended location – for example, ...

‘Attackers are actively scanning for vulnerable Microsoft Exchange servers and abusing the latest line of Microsoft Exchange vulnerabilities that were patched earlier this year,’ says Huntress threat ...

Microsoft has released Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server. According to the blog post, “Microsoft is aware of limited targeted attacks using the two ...

The combination of Squirrelwaffle, ProxyLogon, and ProxyShell against Microsoft Exchange Servers is being used to conduct financial fraud through email hijacking. On Tuesday, researchers from Sophos ...

Microsoft Teams and Outlook were hit outages - Copyright AFP/File Fabrice COFFRINI Microsoft Teams and Outlook were hit outages - Copyright AFP/File Fabrice COFFRINI ...

This story was originally published on Cybersecurity Dive. To receive daily news and insights, subscribe to our free daily Cybersecurity Dive newsletter. The Cybersecurity and Infrastructure Security ...

Microsoft recently acknowledged a vulnerability affecting its email and calendar service Exchange that could allow an attacker to gain significant control over particular organizations' email servers ...

The Redmond, Wash.-based tech giant is confirming two zero-day vulnerabilities found in popular Exchange. Microsoft has confirmed the existence of two zero-day vulnerabilities in Microsoft Exchange – ...

Microsoft has released its May set of security patches, fixing critical bugs in Windows, Office and Exchange. The Exchange update fixes previously undisclosed flaws in Microsoft’s messaging software ...

Microsoft Corp. confirmed late Thursday that two unpatched Exchange Server vulnerabilities exist and that they’re currently being exploited in the wild by unknown attackers. The attacks were ...

Microsoft Corp. today released a fix for a critical vulnerability in Exchange Server as part of its monthly Patch Tuesday release. The Exchange Server vulnerability addressed was officially named ...

Recent scanning for a "Critical" remote code execution vulnerability (CVE-2021-34473) in Exchange Server, dubbed "ProxyShell," has been detected by security researchers. Security researcher and ...