Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Actor Exploits Microsoft Exchange Server Vulnerabilities, Cortex XDR Blocks Credential Harvesting
Threat Actors
April 15, 2021
Palo Alto Networks
Six days after installing the webshell, the actor used the installed webshell to run PowerShell commands to gather information from the local server and the Active Directory and stole credentials from the compromised Exchange server.
Read More
Cortex XDR
Microsoft Exchange Server
Password Theft Protection
ProxyLogon vulnerabilities
Financial Institution
Publisher
Previous
Attackers Target ProxyLogon Exploit to Install Cryptoja ...
Malware and Vulnerabilities
Next
Russian Foreign Intelligence Service Exploiting Five Pu ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/1bf9_shutterstock_1452683084.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_565992307.jpg)
