Microsoft on Friday disclosed it has made more improvements to the mitigation method offered as a means to prevent exploitation attempts against the newly disclosed unpatched security flaws in Exchange Server.
To that end, the tech giant has revised the blocking rule in IIS Manager from “.*autodiscover.json.*Powershell.*” to “(?=.*autodiscover.json)(?=.*powershell).”
The list of
Related Post
- April 10, 2025
Incomplete Patch in NVIDIA Toolkit Leaves CVE-2024-0132 Open
Cybersecurity researchers have detailed a case of an incomplete patch for a previously addressed security flaw impacting the NVIDIA Container
- April 10, 2025
Malicious npm Package Targets Atomic Wallet, Exodus Users
Threat actors are continuing to upload malicious packages to the npm registry so as to tamper with already-installed local versions
- April 11, 2025
OttoKit WordPress Plugin Admin Creation Vulnerability Under Active
A newly disclosed high-severity security flaw impacting OttoKit (formerly SureTriggers) has come under active exploitation within a few hours of
- April 10, 2025
China-based SMS Phishing Triad Pivots to Banks
China-based purveyors of SMS phishing kits are enjoying remarkable success converting phished payment card data into mobile wallets from Apple
- April 10, 2025
Incomplete Patch in NVIDIA Toolkit Leaves CVE-2024-0132 Open
Cybersecurity researchers have detailed a case of an incomplete patch for a previously addressed security flaw impacting the NVIDIA Container
- April 10, 2025
Malicious npm Package Targets Atomic Wallet, Exodus Users
Threat actors are continuing to upload malicious packages to the npm registry so as to tamper with already-installed local versions
- April 11, 2025
OttoKit WordPress Plugin Admin Creation Vulnerability Under Active
A newly disclosed high-severity security flaw impacting OttoKit (formerly SureTriggers) has come under active exploitation within a few hours of
- April 10, 2025
China-based SMS Phishing Triad Pivots to Banks
China-based purveyors of SMS phishing kits are enjoying remarkable success converting phished payment card data into mobile wallets from Apple
prev
next