Threat Advisories

ProxyShellMiner Exploits Windows Exchange Server Vulnerabilities for Cryptocurrency Mining

February 20, 2023

Threat Level

Attack Report

For a detailed threat advisory, download the pdf file here

Summary

ProxyShellMiner exploits Windows Exchange servers’ vulnerabilities, which are used to gain unauthorized access and compromise an organization, leading to the installation of cryptocurrency miners.

Israel’s Technion Targeted by DarkBit Ransomware’s Campaign

APT Earth Kitsune delivers new WhiskerSpy malware via watering hole attack