Microsoft Exchange Server Remote Code Execution Vulnerability
Published: 2021-03-03
Four zero-day vulnerabilities in Microsoft Exchange servers have been used in chained attacks in the wild.
https://www.darkreading.com/threat-intelligence/prometei-botnet-cryptojacker-worldwide
https://www.tenable.com/blog/aa23-215a-2022s-top-routinely-exploited-vulnerabilities
https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-215a
https://www.tenable.com/cyber-exposure/tenable-2022-threat-landscape-report
https://www.cisa.gov/news-events/cybersecurity-advisories/aa22-117a
https://www.tenable.com/cyber-exposure/2021-threat-landscape-retrospective
https://www.cisa.gov/news-events/cybersecurity-advisories/aa21-209a
https://www.welivesecurity.com/2021/03/10/exchange-servers-under-siege-10-apt-groups/
https://www.tenable.com/blog/microsoft-s-march-2021-patch-tuesday-addresses-82-cves-cve-2021-26411
https://msrc.microsoft.com/blog/2021/03/multiple-security-updates-released-for-exchange-server/
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27065
http://packetstormsecurity.com/files/162736/Microsoft-Exchange-ProxyLogon-Collector.html
http://packetstormsecurity.com/files/161938/Microsoft-Exchange-ProxyLogon-Remote-Code-Execution.html