New Exploit Method that Bypasses ProxyNotShell Mitigations

Threat Level – Red | Vulnerability Report
Download PDF

A new exploit method has been found in the mitigations of the Microsoft Exchange vulnerability ProxyNotShell URL rewrite that allows for remote code execution (RCE) on compromised servers through Outlook Web Access (OWA). The threat actors responsible for this new exploit have been identified as members of the Play ransomware group.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox