Inside the Web Shell Used in the Microsoft Exchange Server Attacks
China Chopper Web shells are an older threat causing new problems for many organizations targeted in ongoing attacks against vulnerable Microsoft Exchange Servers worldwide.
Since Microsoft patched a series of Exchange Server zero-days on March 2, what had previously been "limited and targeted" attacks quickly became a global issue as attackers weaponized the critical flaws. Security companies tracking the activity, including FireEye and Red Canary, noticed China Chopper Web shells played a consistent role in their observed attack patterns.
Less than two weeks after the flaws were disclosed, the DHS' Cybersecurity and Infrastructure Security Agency (CISA) updated its guidance on the vulnerabilities to include seven China Chopper Web shells connected to successful attacks against vulnerable Exchange Servers.
Click link to read article: DR
Bitlogix is a network management and IT security solutions company providing to customers industry-leading products and services in the field of IoT network monitoring, IT security and cybersecurity. Bitlogix’s clients are from the education, government, defense, energy, finance, automotive, media, telecommunication, and healthcare industry. Bitlogix was founded in 2002 and has offices in the United States and Germany.
Interested in finding out how Bitlogix can help your organization? Contact us today!