heise Security<p>5 Jahre nach großem Microsoft-Exchange-Einbruch: Chinese verhaftet</p><p>Hunderttausende MS-Exchange-Server wurden 2020-2021 geknackt. Nun wollen die USA dafür einen Chinesen vor Gericht stellen. Er befindet sich in Italien.</p><p><a href="https://www.heise.de/news/5-Jahre-nach-grossem-Microsoft-Exchange-Einbruch-Chinese-verhaftet-10479651.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/5-Jahre-nach-gro</span><span class="invisible">ssem-Microsoft-Exchange-Einbruch-Chinese-verhaftet-10479651.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/Journal" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Journal</span></a> <a href="https://social.heise.de/tags/MicrosoftExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MicrosoftExchange</span></a> <a href="https://social.heise.de/tags/Spionage" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Spionage</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>news</span></a></p>
shakedown.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A community for live music fans with roots in the jam scene. Shakedown Social is run by a team of volunteers (led by @clifff and @sethadam1) and funded by donations.
Administered by:
Server stats:
270active users
shakedown.social: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.1
#microsoftexchange
0 posts · 0 participants · 0 posts today
iX Magazin<p>Neues Google-Tool: E-Mails einfach von Exchange Online zu Gmail migrieren</p><p>In der Datenmigration für Workspace finden Admins jetzt ein neues Tool, mit dem sie die E-Mails und Kalender ihrer Nutzer einfach von Microsoft kopieren können.</p><p><a href="https://www.heise.de/news/Neues-Google-Tool-E-Mails-einfach-von-Exchange-Online-zu-Gmail-migrieren-10443923.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Neues-Google-Too</span><span class="invisible">l-E-Mails-einfach-von-Exchange-Online-zu-Gmail-migrieren-10443923.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/CloudComputing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudComputing</span></a> <a href="https://social.heise.de/tags/EMail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EMail</span></a> <a href="https://social.heise.de/tags/Google" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Google</span></a> <a href="https://social.heise.de/tags/IT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IT</span></a> <a href="https://social.heise.de/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> <a href="https://social.heise.de/tags/MicrosoftExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MicrosoftExchange</span></a> <a href="https://social.heise.de/tags/OfficeSuite" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OfficeSuite</span></a> <a href="https://social.heise.de/tags/Systemverwaltung" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Systemverwaltung</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>news</span></a></p>
ESET Research<p><a href="https://infosec.exchange/tags/ESETresearch" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ESETresearch</span></a> analyzed a campaign deployed by BladedFeline, an Iran-aligned threat actor with likely ties to <a href="https://infosec.exchange/tags/OilRig" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OilRig</span></a>. We discovered the campaign, which targeted Kurdish and Iraqi government officials, in 2024. <a href="https://www.welivesecurity.com/en/eset-research/bladedfeline-whispering-dark/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">welivesecurity.com/en/eset-res</span><span class="invisible">earch/bladedfeline-whispering-dark/</span></a> <br>BladedFeline, a cyberespionage group active since at least 2017, develops malware for strategic access within the Kurdistan Regional Government and the government of Iraq. We discovered BladedFeline in 2023 after it targeted Kurdish officials with the <a href="https://infosec.exchange/tags/Shahmaran" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Shahmaran</span></a> backdoor. <br>The systems compromised in the latest campaign contained the <a href="https://infosec.exchange/tags/Whisper" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Whisper</span></a> backdoor, a malicious IIS module <a href="https://infosec.exchange/tags/PrimeCache" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PrimeCache</span></a>, two reverse tunnels, and several supplementary tools. Whisper uses <a href="https://infosec.exchange/tags/MicrosoftExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MicrosoftExchange</span></a> server to communicate with the attackers via email attachments. <br>We believe with medium confidence that BladedFeline is a subgroup of OilRig, an 🇮🇷-based APT group also known as APT34 or Hazel Sandstorm. <br>First, there were OilRig tools present in the systems compromised in this campaign. BladedFeline’s PrimeCache also shares code similarities with OilRig’s <a href="https://infosec.exchange/tags/RDAT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RDAT</span></a> backdoor. Moreover, as does OilRig, BladedFeline targets organizations in the Middle East.<br>IoCs will be available in our GitHub repo: <a href="https://github.com/eset/malware-ioc/tree/master/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/eset/malware-ioc/tr</span><span class="invisible">ee/master/</span></a></p>
CybersecKyle<p>US indicts Black Kingdom ransomware admin for Microsoft Exchange attacks <a href="https://www.bleepingcomputer.com/news/security/us-indicts-black-kingdom-ransomware-admin-for-microsoft-exchange-attacks/?utm_source=mastodon&utm_medium=social&utm_campaign=fedica-Social-Pipeline" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bleepingcomputer.com/news/secu</span><span class="invisible">rity/us-indicts-black-kingdom-ransomware-admin-for-microsoft-exchange-attacks/?utm_source=mastodon&utm_medium=social&utm_campaign=fedica-Social-Pipeline</span></a></p><p><a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a> <a href="https://infosec.exchange/tags/cybersec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersec</span></a> <a href="https://infosec.exchange/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ransomware</span></a> <a href="https://infosec.exchange/tags/microsoftexchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>microsoftexchange</span></a></p>
Kevin Karhan :verified:rant, Nextcloud
heise online<p>Microsoft erhöht Preise für On-Premises-Server</p><p>Microsoft erkennt an, dass es Kunden gibt, die On-Premises-Installationen benötigen. Die sollen dafür aber tiefer in die Tasche greifen.</p><p><a href="https://www.heise.de/news/Microsoft-erhoeht-Preise-fuer-On-Premises-Server-10345544.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Microsoft-erhoeh</span><span class="invisible">t-Preise-fuer-On-Premises-Server-10345544.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</span></a></p><p><a href="https://social.heise.de/tags/MicrosoftExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MicrosoftExchange</span></a> <a href="https://social.heise.de/tags/IT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IT</span></a> <a href="https://social.heise.de/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> <a href="https://social.heise.de/tags/Server" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Server</span></a> <a href="https://social.heise.de/tags/SharePoint" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SharePoint</span></a> <a href="https://social.heise.de/tags/Wirtschaft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Wirtschaft</span></a> <a href="https://social.heise.de/tags/news" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>news</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://netzsphaere.xyz/users/maija" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>maija</span></a></span> worse is <a href="https://infosec.space/tags/MAPI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MAPI</span></a> which solely exost to enshure <span class="h-card" translate="no"><a href="https://mastodon.online/@thunderbird" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>thunderbird</span></a></span> can't work with <a href="https://infosec.space/tags/MicrosoftExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MicrosoftExchange</span></a> out of the box!</p><p><a href="https://en.wikipedia.org/wiki/MAPI" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">en.wikipedia.org/wiki/MAPI</span><span class="invisible"></span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://wisskomm.social/@DigA_UniLeipzig" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>DigA_UniLeipzig</span></a></span> alles ist besser als <a href="https://infosec.space/tags/MicrosoftExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MicrosoftExchange</span></a>: Selbst nen alter <a href="https://infosec.space/tags/UltraSPARC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UltraSPARC</span></a>-T2 mit <a href="https://infosec.space/tags/Solaris" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Solaris</span></a> sowie <a href="https://infosec.space/tags/Postfix" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Postfix</span></a> & <a href="https://infosec.space/tags/Courierist" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Courierist</span></a> besser, weils nativ mit allen Clients.wie <span class="h-card" translate="no"><a href="https://mastodon.online/@thunderbird" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>thunderbird</span></a></span> funktioniert.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://pixelfed.social/heinelo" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>heinelo</span></a></span> genau das sehe ich fundamental andersherum, eben weil jene <a href="https://infosec.space/tags/Monokultur" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Monokultur</span></a> ein Problem ist, sollten Leute umso mehr an offene Standards gewohnt werden.</p><p><a href="https://infosec.space/tags/MicrosoftOffice" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MicrosoftOffice</span></a> kann problemlos <a href="https://infosec.space/tags/OpenDocument" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenDocument</span></a> verarbeiten, aber <a href="https://infosec.space/tags/OOXML" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OOXML</span></a> ist bewusst so designed dass es faktisch unmöglich ist dies sauber zu implementieren!</p><ul><li>Dasselbe gibt auch bei anderen Standards wie <a href="https://infosec.space/tags/IMAP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IMAP</span></a> vs. <a href="https://infosec.space/tags/MAPI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MAPI</span></a> / <a href="https://infosec.space/tags/MicrosoftExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MicrosoftExchange</span></a>... </li></ul><p>Wäre was anderes wenn Mensch zu <em>"Fachsoftware"</em> fenötigt wird wie <em>:würg:</em> SAP oder <em>:kotz:</em> DATEV...</p>
Scripter :verified_flashing:<p>Microsoft ist ein Risiko für die nationale Sicherheit<br><a href="https://tarnkappe.info/artikel/it-sicherheit/ehemaliger-direktor-im-weissen-haus-microsoft-ist-eine-bedrohung-fuer-die-nationale-sicherheit-292479.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">tarnkappe.info/artikel/it-sich</span><span class="invisible">erheit/ehemaliger-direktor-im-weissen-haus-microsoft-ist-eine-bedrohung-fuer-die-nationale-sicherheit-292479.html</span></a> <a href="https://social.tchncs.de/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> <a href="https://social.tchncs.de/tags/Mailserver" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Mailserver</span></a> <a href="https://social.tchncs.de/tags/MicrosoftExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MicrosoftExchange</span></a></p>
IT News<p>Microsoft blamed for “a cascade of security failures” in Exchange breach report - Enlarge (credit: Getty Images) </p><p>A federal Cyber Safety Review B... - <a href="https://arstechnica.com/?p=2014535" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">arstechnica.com/?p=2014535</span><span class="invisible"></span></a> <a href="https://schleuss.online/tags/nation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>nation</span></a>-stateactors <a href="https://schleuss.online/tags/microsoftexchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>microsoftexchange</span></a> <a href="https://schleuss.online/tags/microsoftazure" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>microsoftazure</span></a> <a href="https://schleuss.online/tags/auditlogging" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>auditlogging</span></a> <a href="https://schleuss.online/tags/storm" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>storm</span></a>-0558 <a href="https://schleuss.online/tags/crashdump" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>crashdump</span></a> <a href="https://schleuss.online/tags/microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>microsoft</span></a> <a href="https://schleuss.online/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>biz</span></a> <a href="https://schleuss.online/tags/china" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>china</span></a> <a href="https://schleuss.online/tags/cisa" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cisa</span></a> <a href="https://schleuss.online/tags/csrb" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>csrb</span></a></p>
Matt Willemsen<p>Microsoft Exchange vulnerability actively exploited<br><a href="https://www.malwarebytes.com/blog/news/2024/02/microsoft-exchange-vulnerability-actively-exploited" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">malwarebytes.com/blog/news/202</span><span class="invisible">4/02/microsoft-exchange-vulnerability-actively-exploited</span></a> <a href="https://mastodon.social/tags/MicrosoftExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MicrosoftExchange</span></a> <a href="https://mastodon.social/tags/vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>vulnerability</span></a> <a href="https://mastodon.social/tags/exploit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>exploit</span></a> <a href="https://mastodon.social/tags/PatchTuesday" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PatchTuesday</span></a> <a href="https://mastodon.social/tags/BSI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BSI</span></a> <a href="https://mastodon.social/tags/CVE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CVE</span></a> <a href="https://mastodon.social/tags/leaked" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>leaked</span></a> <a href="https://mastodon.social/tags/NTLM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NTLM</span></a> <a href="https://mastodon.social/tags/credentials" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>credentials</span></a></p>
stux⚡<p>What is the Cyber Trust Mark? & Major ColdFusion & Microsoft Exchange Hacks Underway! </p><p><a href="https://mstdn.social/tags/ThreatWire" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatWire</span></a> <a href="https://mstdn.social/tags/Hak5" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Hak5</span></a> <a href="https://mstdn.social/tags/ColdFusion" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ColdFusion</span></a> <a href="https://mstdn.social/tags/MicrosoftExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MicrosoftExchange</span></a></p><p><a href="https://www.youtube.com/watch?v=yoVkxZ8JRcQ" rel="nofollow noopener" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">youtube.com/watch?v=yoVkxZ8JRc</span><span class="invisible">Q</span></a></p>
Jonathan Blackshire<p>Any <a href="https://zirk.us/tags/MicrosoftExchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MicrosoftExchange</span></a> experts out there? I'm about to slam my head through my desk.</p>
Andrew Baker<p>Time for an second introduction, now I’ve moved over to a new instance. My name is Andrew, and I’m an Senior Infrastructure Officer in Local Government in the South West of the UK. I mainly work with <a href="https://msto.andrewbaker.uk/tags/memcm" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>memcm</span></a>, <a href="https://msto.andrewbaker.uk/tags/microsoftteams" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>microsoftteams</span></a>, <a href="https://msto.andrewbaker.uk/tags/microsoftexchange" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>microsoftexchange</span></a> and other services to support my workplace.</p><p>I’ve been slowly working my way away towards Linux for home use and have fully converted all of my devices to <a href="https://msto.andrewbaker.uk/tags/fedora" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>fedora</span></a> (apart from the <a href="https://msto.andrewbaker.uk/tags/SteamDeck" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SteamDeck</span></a> ;) )</p><p>I’ve got interests in <a href="https://msto.andrewbaker.uk/tags/gaming" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>gaming</span></a>, <a href="https://msto.andrewbaker.uk/tags/photography" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>photography</span></a>, and <a href="https://msto.andrewbaker.uk/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>linux</span></a>.</p>
TrendingLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload