Source |
Security Affairs |
Identifiant |
3805518 |
Date de publication |
2021-12-16 07:24:07 (vue: 2021-12-16 08:05:15) |
Titre |
Owowa, a malicious IIS Server module used to steal Microsoft Exchange credentials (Recyclage) |
Texte |
Threat actors are using a malicious Internet Information Services (IIS) Server module, dubbed Owowa, to steal Microsoft Exchange credentials. Kaspersky researchers spotted malicious actors while deploying a previously undiscovered binary, an Internet Information Services (IIS) webserver module dubbed “Owowa,” on Microsoft Exchange Outlook Web Access servers to steal credentials and for remote code execution. “Owowa […]
|
Envoyé |
Oui |
Condensat |
“owowa access actors are binary code credentials deploying dubbed exchange execution iis information internet kaspersky malicious microsoft module outlook owowa previously remote researchers server servers services spotted steal threat undiscovered used using web webserver |
Tags |
|
Stories |
|
Notes |
|
Move |
|
Source |
The Hacker News |
Identifiant |
3799885 |
Date de publication |
2021-12-15 04:08:50 (vue: 2021-12-15 13:06:24) |
Titre |
Hackers Using Malicious IIS Server Module to Steal Microsoft Exchange Credentials |
Texte |
Malicious actors are deploying a previously undiscovered binary, an Internet Information Services (IIS) webserver module dubbed "Owowa," on Microsoft Exchange Outlook Web Access servers with the goal of stealing credentials and enabling remote command execution.
"Owowa is a C#-developed .NET v4.0 assembly that is intended to be loaded as a module within an IIS web server that also exposes |
Envoyé |
Oui |
Condensat |
access actors also are assembly binary command credentials deploying developed dubbed enabling exchange execution exposes goal hackers iis information intended internet loaded malicious microsoft module net outlook owowa previously remote server servers services steal stealing undiscovered using web webserver within |
Tags |
|
Stories |
|
Notes |
|
Move |
|