Malpedia Library

Click here to download all references as Bib-File.•

2021-03-26 ⋅ Imperva ⋅ Daniel Johnston
Imperva Observes Hive of Activity Following Hafnium Microsoft Exchange Disclosures
CHINACHOPPER

2021-03-26 ⋅ Microsoft ⋅ Eric Doerr
Securing our approach to domain fronting within Azure

2021-03-25 ⋅ Microsoft ⋅ Tom McElroy
Web Shell Threat Hunting with Azure Sentinel
CHINACHOPPER

2021-03-25 ⋅ Microsoft ⋅ Microsoft 365 Defender Threat Intelligence Team
Analyzing attacks taking advantage of the Exchange Server vulnerabilities
CHINACHOPPER

2021-03-25 ⋅ Recorded Future ⋅ Insikt Group®
Suspected Chinese Group Calypso APT Exploiting Vulnerable Microsoft Exchange Servers
Meterpreter PlugX

2021-03-25 ⋅ Google Project Zero ⋅ Anthony Weems, Dallas Kaman, Michael Weber
CVE-2021-26855: Microsoft Exchange Server-Side Request Forgery

2021-03-19 ⋅ Bundesamt für Sicherheit in der Informationstechnik ⋅ CERT-Bund
Microsoft Exchange Schwachstellen Detektion und Reaktion (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-27065)
CHINACHOPPER MimiKatz

2021-03-18 ⋅ ⋅ CERT-BR ⋅ CERT-BR
Communiqué de presse: 400 systèmes informatique belges infiltrés dans le cadre d'une vulnérabilité des serveurs Microsoft Exchange

2021-03-18 ⋅ YouTube (Microsoft Security) ⋅ Microsoft
How to protect against Microsoft Exchange Server

2021-03-16 ⋅ Microsoft ⋅ MSRC Team
Guidance for responders: Investigating and remediating on-premises Exchange Server vulnerabilities

2021-03-15 ⋅ Microsoft ⋅ Microsoft Security Response Center
One-Click Microsoft Exchange On-Premises Mitigation Tool – March 2021

2021-03-14 ⋅ DAILY BEAST ⋅ Matthew Brazil
How China’s Devastating Microsoft Hack Puts Us All at Risk
HAFNIUM

2021-03-12 ⋅ splunk ⋅ Amy Heng, Dave Herrald, Derek King, James Brodsky, John Stoner, Jose Hernandez, Marcus LaFerrera, Michael Haag, Mick Baccio, Ryan Kovar, Shannon Davis
Detecting Microsoft Exchange Vulnerabilities - 0 + 8 Days Later…

2021-03-11 ⋅ Check Point ⋅ Adi Ikan, Lotem Finkelsteen, Sagi Tzadik, Yaniv Balmas
Exploits on Organizations Worldwide Tripled after Microsoft’s Revelation of Four Zero-days

2021-03-11 ⋅ DEVO ⋅ Fran Gomez
Detection and Investigation Using Devo: HAFNIUM 0-day Exploits on Microsoft Exchange Service
CHINACHOPPER MimiKatz

2021-03-11 ⋅ Bleeping Computer ⋅ Lawrence Abrams
Ransomware now attacks Microsoft Exchange servers with ProxyLogon exploits

2021-03-11 ⋅ Palo Alto Networks Unit 42 ⋅ Unit 42
Microsoft Exchange Server Attack Timeline
CHINACHOPPER

2021-03-10 ⋅ PICUS Security ⋅ Süleyman Özarslan
Tactics, Techniques, and Procedures (TTPs) Used by HAFNIUM to Target Microsoft Exchange Servers
CHINACHOPPER

2021-03-10 ⋅ FBI ⋅ CISA, FBI
Compromise of Microsoft Exchange Server

2021-03-10 ⋅ Microsoft ⋅ Pete Bryan
Monitoring the Software Supply Chain with Azure Sentinel