Sponsor of the Day:
Jerkmate
https://detection.fyi/sigmahq/sigma/emerging-threats/2021/exploits/cve-2021-26858/web_cve_2021_26858_iis_rce/
ProxyLogon Reset Virtual Directories Based On IIS Log | Detection.FYI
When exploiting this vulnerability with CVE-2021-26858, an SSRF attack is used to manipulate virtual directories
iis logdetection fyiproxylogonresetvirtual
https://threatpost.com/attackers-target-proxylogon-cryptojacker/165418/
Attackers Target ProxyLogon Exploit to Install Cryptojacker | Threatpost
Apr 15, 2021 - Threat actors targeted compromised Exchange servers to host malicious Monero cryptominer in an “unusual attack,” Sophos researchers discovered.
attackers targetproxylogonexploitinstallthreatpost
https://proxylogon.com/
ProxyLogon
ProxyLogon - The latest pre-authenticated Remote Code Execution vulnerability on Microsoft Exchange Server
proxylogon
https://devco.re/blog/2021/08/06/a-new-attack-surface-on-MS-exchange-part-1-ProxyLogon/
A New Attack Surface on MS Exchange Part 1 - ProxyLogon! | DEVCORE
ProxyLogon! The most severe and impactful vulnerability in the Exchange Server history ever.
new attack surfaceexchange part 1msproxylogondevcore
https://www.itsec.ru/news/tag/proxylogon
Новости | ITSec.Ru | ProxyLogon
ProxyLogon | Новости портала ITSec.Ru
itsec ruproxylogon