Categories
Ace Breaking News

BREAKING AUSTRALIA ACSC SECURITY REPORT: Potential Vulnerability of Microsoft Exchange Server

This is our daily post that is shared across Twitter & Telegram and published first on here with Kindness & Love XX on peace-truth.com/

#AceNewsRoom With ‘Kindness & Wisdom’ Oct.01: 2022 @acebreakingnews

Ace News Room Cutting Floor 01/10/2022

Follow Our Breaking & Daily News Here As It Happens:

High Alert - Act Quickly

Published: 30 September 2022

Background / What’s happened?

The Australian Cyber Security Centre (ACSC) is aware of a potential vulnerability associated with Microsoft Exchange Server (Exchange). The ACSC is not aware of successful exploitation within Australia.

Unpatched versions of ProxyShell are reportedly impacted by the potential zero day vulnerability.

There is no associated CVE at this time.

Historical CVE’s related to ProxyShell:

  • CVE-2021-34473 – Pre-auth Path Confusion leads to ACL Bypass (Patched in April by KB5001779)
  • CVE-2021-34523 – Elevation of Privilege on Exchange PowerShell Backend (Patched in April by KB5001779)
  • CVE-2021-31207 – Post-auth Arbitrary-File-Write leads to RCE (Patched in May by KB5003435)

Mitigation / How do I stay secure?

  • Apply latest patches from Microsoft and monitor network for suspicious activity.
  • Monitor exchange servers for webshells.
  • Monitor for suspicious use of certutil (eg. certutil.exe –urlcache –split –f).
  • Microsoft has been notified and the ACSC will provide updates as they become available.

Assistance / Where can I go for help?

The ACSC is monitoring the situation and is able to provide assistance and advice as required. Organisations that have been impacted or require assistance can contact the ACSC via cyber.gov.au/report, or 1300 CYBER1 (1300 292 371).

Read this alert on our website.

Are you a victim of cybercrime? Visit ReportCyber to take your next steps.

We use hyperlinks to give you more information. If you don’t want to click hyperlinks, you can search for the information on the ACSC website. 

#AceNewsDesk report ………..Published: Oct.01: 2022:

Editor says …Sterling Publishing & Media Service Agency is not responsible for the content of external site or from any reports, posts or links, and can also be found here on Telegram: https://t.me/acenewsdaily and all wordpress and live posts and links here: https://acenewsroom.wordpress.com/ and thanks for following as always appreciate every like, reblog or retweet and free help and guidance tips on your PC software or need help & guidance from our experts AcePCHelp.WordPress.Com

By ace101

Ace Worldwide News Group working with Kindness & Wisdom in perfect harmony to provide help and guidance through news & views and the truth to people in need Amen