[aklug] [nuga] Exchange /OWA vulnerability actively exploited
royce at tycho.org
Sat Mar 6 10:39:53 AKST 2021
A scan of Alaskan space reveals ~100 Exchange instances still vulnerable.
All others (includes "hits" in Alasconnect, AP&T, MTA, TelAlaska,
SnowCloud, UA space):
Unless reverse DNS is in place, or the server has been rebranded visually
it's often difficult to tell what entity owns the server at that IP.
On Sat, Mar 6, 2021 at 8:35 AM Royce Williams via groups.io <royce.williams=
gmail.com at groups.io> wrote:
> And here is an official Microsoft nmap script to help detect vulnerable
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the aklug