Hackers Using Malicious IIS Server Module to Steal Microsoft Exchange Credentials
Malicious actors are deploying a previously undiscovered binary, an Internet Information Services (IIS) webserver module dubbed "Owowa," on Microsoft Exchange Outlook Web Access servers with the goal of stealing credentials and enabling remote command execution. "Owowa is a C#-developed .NET v4.0 assembly that is intended to be loaded as a module within an IIS web server that also exposes
from The Hacker News https://ift.tt/3IL7uSd
via IFTTT
from The Hacker News https://ift.tt/3IL7uSd
via IFTTT
Comments
Post a Comment