Skip to main content

CVE-2022-41040 and CVE-2022-41082 ProxyNotShell exploit released online


 Proof-of-concept exploit for CVE-2022-41040 and CVE-2022-41082 Microsoft exchange which is activly exploited,  published online. CVE-2022-41040 and CVE-2022-41082 both bugs affecting Exchange server 2013 , exchange server 2016 and exchange server 2019 known as ProxyNotShell. Microsoft already patch both vulnerability in nov 2022 patch Tuesday .



One week later security researcher Janggggg published POC of both CVE online which is used to backdoor exchange server .

Comments

Popular posts from this blog

Georgia county voter information leaked by ransomware gang

The DoppelPaymer ransomware gang has released unencrypted data stolen from Hall County, Georgia, during a cyberattack earlier this month.

IT Software Firm Kaseya Hit By Supply Chain Ransomware Attack

  Software maker Kaseya Limited is urging users of its VSA endpoint management and network monitoring tool to immediately shut down VSA servers to prevent them from being compromised in a widespread ransomware attack. According to Kaseya, the attack began around 2PM ET on Friday. The company said that while the incident only appears to impact on-premises customers, SaaS servers have also been shut down as a precautionary measure.

WannaRen, died in past reborn in present now targeting India

Credit: Trend-micro Originally WannaRen discovered in 2020 when it is used against Chinese internet users. it is used for a very short time-span but damaged a lot in that short time than ransomware author shared the decryption keys to a security company in August 2020 and we believe that it was the end of WannaRen ransomware. October 2022 Trend Micro team discovered "Life ransomware" which they believe may be a new variant of WannaRen. New Variant targeted Indian organizations .