Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

3 headlines in this view

Showing 3 most recent headlines Filtered view

Bleeping Computer 3 years, 7 months ago

Microsoft updates mitigation for ProxyNotShell Exchange zero days

Microsoft has updated the mitigation for the latest Exchange zero-day vulnerabilities tracked as CVE-2022-41040 and CVE-2022-41082, also referred to ProxyNotShell. [...]

More from Bleeping Computer 6 Oct 2022, 1:58 a.m. Actively exploited CVE-2022-41040 CVE-2022-41082 0-Day CVE Microsoft Mitigation Vulnerability

The Hacker News 3 years, 7 months ago

ProxyNotShell – the New Proxy Hell?

Nicknamed ProxyNotShell, a new exploit used in the wild takes advantage of the recently published Microsoft Server-Side Request Forgery (SSRF) vulnerability CVE-2022-41040 and a second vulnerability, CVE-2022-41082 that allows Remote Code Execution (RCE) when PowerShell is available to unidentified attackers

More from The Hacker News 4 Oct 2022, 9:05 p.m. Actively exploited CVE-2022-41040 CVE-2022-41082 0-Day Abuse CVE Exploit Microsoft PowerShell Remote Code Execution Vulnerability

Bleeping Computer 3 years, 8 months ago

Microsoft Exchange server zero-day mitigation can be bypassed

Microsoft has shared mitigations for two new Microsoft Exchange zero-day vulnerabilities tracked as CVE-2022-41040 and CVE-2022-41082, but researchers warn that the mitigation for on-premise servers is far from enough. [...]

More from Bleeping Computer 4 Oct 2022, 3:21 a.m. Actively exploited CVE-2022-41040 CVE-2022-41082 0-Day CVE Exchange Server Microsoft Mitigation Research Vulnerability

Latest cybersecurity reporting from selected sources.

Refine the feed

Fresh headlines available

Microsoft updates mitigation for ProxyNotShell Exchange zero days

ProxyNotShell – the New Proxy Hell?

Microsoft Exchange server zero-day mitigation can be bypassed