Threat Actors Have Hacked Microsoft Exchange Servers

Threat actors are hacking Microsoft Exchange servers. This is made possible by the use of ProxyShell and ProxyLogon exploits. This is used to spread malware and bypass detection by using stolen internal response chain e-mails.

TrendMicro researchers reveal how attackers distribute malicious emails through the compromised Microsoft Exchange server of the victim to the internal users of an organization.

The researchers explained that the attackers exploit Microsoft Exchange servers to then reply to in-house emails in response chain attacks that contain links embedded with malware documents.

This tactic is considered to be very effective as it comes from the same internal network, which indicates that it is very secure.

Once the link is clicked, malicious macros are executed to download and install the malware included in the attachment.

For more information, read the original story in Bleeping Computer.

Threat Actors Have Hacked Microsoft Exchange Servers

Top Stories

Grok generating non-consensual sexualized images in thousands hourly, researcher finds

Malicious browser extensions are harvesting ChatGPT conversations at massive scale

10 game-changing technology unveiled at CES 2026 so far

Canadian fugitive connected to Desjardins data breach arrested in Spain

SaaStr founder says human sales roles have been replaced by AI agents

AI tool is flagging pancreatic cancer early in China

Related Articles

Over 59,000 Next.js servers hacked in 48 hours in credential-theft campaign

NIST warns of inaccurate internet time after atomic clock disruption

Critical LangChain flaw exposes secrets across millions of AI agent deployments

Facial recognition becomes mandatory for new mobile accounts in South Korea

TND News Desk

TND News Desk

Jim Love

Follow Us

Popular categories

Tech News Delivered