#proxyshell 搜索结果
ProxyShell is still alive in the networks of giant players! 🫡 #ProxyShell #windows #ActiveDirectory #BugBounty
Vídeo NUEVO ❗️ Ustedes se enteraron de la vulnerabilidad #ProxyShell en #ExcahngeServer? Muchos no y de hecho todavía no han actualizado sus servidores. La Fiscalía de Colombia se vió afectada y te cuento este caso 👇🏻 youtu.be/h-dPwsmBPwI Deja tu me gusta 💙
🚨 #ProxyLogon and #ProxyShell Pose Ongoing Threats to #Government Mail Servers 🔍 Researchers found ongoing exploitation of these vulnerabilities in #MicrosoftExchange servers, targeting government entities in Asia, Europe, and South America to steal sensitive communications. 🔗…
🚨 vulnerabilidades de Microsoft Exchange siguen siendo explotadas por grupos criminales #ProxyNotShell #ProxyShell #cybersecurity #ciberseguridad
Leaked internal APT35 docs show a quota-driven IRGC cyber unit using Exchange and Ivanti exploits, HERV-style phishing from Global Address Lists, and persistent mailbox monitoring with centralized KPI and attendance logs. #APT35 #ProxyShell #Iran ift.tt/ehTO0NY
Microsoft Exchange ProxyShell is being exploited to mine crypto once again #MicrosoftExchange #ProxyShell #Crypto ow.ly/x9xk50MWhOF
Microsoft Exchange ProxyShell flaws exploited in new crypto-mining attack bleepingcomputer.com/news/security/… #Microsoft #Exchange #ProxyShell
Hackers are targeting unpatched Microsoft Exchange servers in 26 countries with JavaScript keyloggers to steal credentials. Read more! thehackernews.com/2025/06/hacker… #CyberSecurity #MicrosoftExchange #ProxyShell #CredentialTheft #ThreatIntelligence #InfoSec
Keylogger found on Microsoft Exchange Server steals login credentials globally. Discovered by Positive Technologies, this #Keylogger targets gov't and business logins since 2021. Exploits #ProxyShell vulnerability. #Cybersecurity #MicrosoftExchange
#CobaltStrike beacon was deployed via a webshell that was planted by exploiting the #ProxyShell vulnerability. This #HsHarada campaign targets healthcare and healthcare-adjacent organizations, and relies on github.com/Tas9er
Keylogger Malware Deployed Through MS Exchange Server Vulnerabilities in Targeted Attacks #Keylogger #keylogging #ProxyShell #logonaspx #MicrosoftExchangeServer #clkLgn ptsecurity.com/ww-en/analytic…
Weeks back, #CISA shared their '22 top exploited vulns, including #Log4shell, #ProxyShell & more. As always, we've got you covered w/ security tests for all 12, 🆓 to use on 25 endpoints + source code available. preludesecurity.com/advisories/aa2… #infosec #redteam
preludesecurity.com
Explore the latest insights on security control validation | Prelude
Find expert perspective and the latest news on how organizations are making the most of their security controls from the Prelude team.
Top causes of a #ransomware attack: 1. ☠️Exploited Vulnerabilities (36%): Attacks carried out by exploiting vulnerabilities found in devices, often due to lack of diligent patching. #ProxyShell and #Log4Shell vulnerabilities were frequently present in affected assets. 2.…
This year's #ProxyShell incident was a humbling reminder that no vendor is immune to #cyberattacks. Check out this article that dives into some of the lessons we learned as this vulnerability made its rounds. cpomagazine.com/cyber-security…
Hunt identified a server likely exploiting #ProxyLogon & #ProxyShell flaws to gain initial access and steal sensitive communications. This renewed activity has affected government entities across multiple regions, including Asia, Europe, and South America securityonline.info/proxylogon-pro…
未確認の攻撃者が65台の古いExchangeサーバにキー入力ログ挿入。既知ProxyShell脆弱性悪用し、JavaScriptで送信型/保存型キーロガー仕込み。政府・金融等が標的。古い脆弱Exchangeサーバの放置は致命的。#ExchangeAttack #Keylogger #ProxyShell thehackernews.com/2025/06/hacker…
thehackernews.com
Hackers Target Over 70 Microsoft Exchange Servers to Steal Credentials via Keyloggers
Hackers target Microsoft Exchange servers worldwide, injecting keyloggers to steal credentials from victims in 26 countries.
#ransomware #patch #ProxyShell #Log4Shell #attacksurfacemanagement #0day #EoL #credentialstuffing #bruteforce #supplychain #maliciousdocuments #adware @wcs_cloud #WCS #cybersecurity #vulnerabilityassessment #patchmanagement #riskmanagement #resilience #backup #restore #RTO #RPO
🚨Major Threat Alert: Keylogger Found Lurking in Microsoft Exchange Server - #ProxyShell CVE-2021-34523 CVE-2021-31207 CVE-2021-34473 CVE-2020-1472 Severity: 🔴 High Maturity: 💥 Mainstream fletch.ai/p/proxyshell #CyberSecurity #ThreatIntel #InfoSec
Leaked internal APT35 docs show a quota-driven IRGC cyber unit using Exchange and Ivanti exploits, HERV-style phishing from Global Address Lists, and persistent mailbox monitoring with centralized KPI and attendance logs. #APT35 #ProxyShell #Iran ift.tt/ehTO0NY
Hackers are targeting unpatched Microsoft Exchange servers in 26 countries with JavaScript keyloggers to steal credentials. Read more! thehackernews.com/2025/06/hacker… #CyberSecurity #MicrosoftExchange #ProxyShell #CredentialTheft #ThreatIntelligence #InfoSec
未確認の攻撃者が65台の古いExchangeサーバにキー入力ログ挿入。既知ProxyShell脆弱性悪用し、JavaScriptで送信型/保存型キーロガー仕込み。政府・金融等が標的。古い脆弱Exchangeサーバの放置は致命的。#ExchangeAttack #Keylogger #ProxyShell thehackernews.com/2025/06/hacker…
thehackernews.com
Hackers Target Over 70 Microsoft Exchange Servers to Steal Credentials via Keyloggers
Hackers target Microsoft Exchange servers worldwide, injecting keyloggers to steal credentials from victims in 26 countries.
Basic failures led to hack of Electoral Commission data on 40 million people computerweekly.com/news/366599512… via @computerweekly # China #vulnerability #ProxyShell #passwords #Microsoft
🚨 #ProxyLogon and #ProxyShell Pose Ongoing Threats to #Government Mail Servers 🔍 Researchers found ongoing exploitation of these vulnerabilities in #MicrosoftExchange servers, targeting government entities in Asia, Europe, and South America to steal sensitive communications. 🔗…
Hunt identified a server likely exploiting #ProxyLogon & #ProxyShell flaws to gain initial access and steal sensitive communications. This renewed activity has affected government entities across multiple regions, including Asia, Europe, and South America securityonline.info/proxylogon-pro…
Keylogger Malware Deployed Through MS Exchange Server Vulnerabilities in Targeted Attacks #Keylogger #keylogging #ProxyShell #logonaspx #MicrosoftExchangeServer #clkLgn ptsecurity.com/ww-en/analytic…
🚨Major Threat Alert: Keylogger Found Lurking in Microsoft Exchange Server - #ProxyShell CVE-2021-34523 CVE-2021-31207 CVE-2021-34473 CVE-2020-1472 Severity: 🔴 High Maturity: 💥 Mainstream fletch.ai/p/proxyshell #CyberSecurity #ThreatIntel #InfoSec
Keylogger found on Microsoft Exchange Server steals login credentials globally. Discovered by Positive Technologies, this #Keylogger targets gov't and business logins since 2021. Exploits #ProxyShell vulnerability. #Cybersecurity #MicrosoftExchange
🚨 Ahora, más de 384.000 correos (67 GB) del Ministerio de Justicia de Chile 🇨🇱 han sido filtrados a raíz de un ataque a la plataforma Microsoft Exchange, al parecer, utilizando las mismas vulnerabilidades explotadas por #Guacamaya. #ProxyLogon #ProxyShell 🥹
Alternate tactic being used in #ProxyShell: attacker modified IIS "MSExchangeOWAAppPool" app pool by adding additional virtual directory to "/owa" with path "/auth/类/hxxxy". Webshell located in C:\ProgramData\COM1\hxxxy. Check your configs when hunting!
dmaasland / proxyshell-poc github.com/dmaasland/prox… #Pentesting #ProxyShell #CyberSecurity #Infosec
I have written an @pdnuclei rule to detect the compromise of the Proxyshell vulnerability. I'll test a little more before committing. Very happy with the result 🚀 #proxyshell #CVE-2021-34473 #CTI
Sigma rules to detect #Exchange #ProxyShell exploitation attempts I'll improve the rules tomorrow with actual PoCs (someone was so kind and offered to share his PoC with me) HTTP log github.com/SigmaHQ/sigma/… Process Creation github.com/SigmaHQ/sigma/…
Turns out you don't need a valid email address to exploit #ProxyShell. You can just ask the server for them: github.com/dmaasland/prox…
A basic proxylogon scanner github.com/dinosn/proxysh… #Pentesting #ProxyShell #ProxyLogon #CyberSecurity #Infosec
Exchange Exploit Leads to Domain Wide Ransomware thedfirreport.com/2021/11/15/exc… #Pentesting #Ransomware #ProxyShell #CyberSecurity #Infosec
96[.]9.225.205 looking for #proxyShell #msexchange vuln #cybercrime #ThreatIntel @smica83 @securitydoggo @bad_packets @malwrhunterteam @Max_Mal_
![whitehoodie4's tweet image. 96[.]9.225.205
looking for #proxyShell #msexchange vuln
#cybercrime #ThreatIntel
@smica83 @securitydoggo @bad_packets @malwrhunterteam @Max_Mal_](https://pbs.twimg.com/media/E-r69yCXsAwuUCl.png)
From PWN2OWN 2021 : A New Attack Surface on Microsoft Exchange - ProxyShell! zerodayinitiative.com/blog/2021/8/17… #Pentesting #ProxyShell #PWN2OWN #CyberSecurity #Infosec
🚨 Sitios del gobierno mexicano 🇲🇽 comprometidos vía #ProxyShell [2021-11-06 - LIVE #Webshells] El sitio de la Secretaría de Seguridad del Estado fue reportado hace 77 días atrás. 💡 Exploit ha sido utilizado por Conti, LockFile y Babuk #Ransomware REF: bleepingcomputer.com/news/security/…
![1ZRR4H's tweet image. 🚨 Sitios del gobierno mexicano 🇲🇽 comprometidos vía #ProxyShell [2021-11-06 - LIVE #Webshells]
El sitio de la Secretaría de Seguridad del Estado fue reportado hace 77 días atrás.
💡 Exploit ha sido utilizado por Conti, LockFile y Babuk #Ransomware
REF: bleepingcomputer.com/news/security/…](https://pbs.twimg.com/media/FDilIbKWYAoQvl3.png)
![1ZRR4H's tweet image. 🚨 Sitios del gobierno mexicano 🇲🇽 comprometidos vía #ProxyShell [2021-11-06 - LIVE #Webshells]
El sitio de la Secretaría de Seguridad del Estado fue reportado hace 77 días atrás.
💡 Exploit ha sido utilizado por Conti, LockFile y Babuk #Ransomware
REF: bleepingcomputer.com/news/security/…](https://pbs.twimg.com/media/FDikIJyWUAY4Toh.png)
Some cheeky #ProxyShell shenanigans in a discovered webshell -- the BQPQ variable looks like enough gibberish to be consider Base64 at first glance, but it's just a pool of characters to pull from and index the letters to build out the "unsafe" keyword for the eval function.
Another good thing to look out for, is webshells saved as attachments in people's mailboxes. They are encoded, but can be decoded with this simple script: gist.github.com/rxwx/b5a8ef0cd… #ProxyShell
Keep your Exchange servers safe this weekend. @HuntressLabs has seen 140+ webshells across 1900+ unpatched boxes in 48hrs. Impacted orgs thus far include building mfgs, seafood processors, industrial machinery, auto repair shops, a small residential airport and more. #ProxyShell
Added the "normal" RCE to the PoC for #ProxyShell. Code isn't the prettiest, but gets the job done: github.com/dmaasland/prox…
I've found a way to do RCE with just this PoC and the "New-ExchangeCertificate" cmdlet. See: youtu.be/HEqt7ew7cGU (Don't worry about the erros, my lab is slow). Command I used here: gist.github.com/dmaasland/0720…. Drive responsibly :)
For a compromise assessment of #Exchange servers I recommend using our free THOR Lite scanner We've added all rules & IOCs relevant to #ProxyShell exploitation & update them frequently THOR Lite nextron-systems.com/thor-lite/ YARA rules github.com/Neo23x0/signat… github.com/Neo23x0/signat…
ATIO Group 🇲🇽 Exchange comprometido vía #ProxyShell Deben realizar análisis de seguridad ASAP! ⚠️ cc: @ATIOGroup
Something went wrong.
Something went wrong.
United States Trends
- 1. Lamar 25K posts
- 2. Thanksgiving 1.76M posts
- 3. Ravens 31.3K posts
- 4. Chiefs 94.4K posts
- 5. Mahomes 29.8K posts
- 6. Zac Taylor 1,928 posts
- 7. Pickens 29.9K posts
- 8. Sarah Beckstrom 153K posts
- 9. Derrick Henry 2,947 posts
- 10. Joe Burrow 9,641 posts
- 11. Tinsley 1,140 posts
- 12. Cam Boozer N/A
- 13. #AEWCollision 8,051 posts
- 14. Jason Garrett N/A
- 15. Chase Brown 2,026 posts
- 16. McDuffie 7,084 posts
- 17. #CINvsBAL 1,117 posts
- 18. Zay Flowers 1,088 posts
- 19. Isaiah Likely N/A
- 20. #WhoDey 1,713 posts