Unpatched Exchange servers distribute phishing links (squirrelwaffle)

0
652

Unpatched Exchange servers distribute phishing links (squirrelwaffle)

Beginning of November a customer reached out to us. Internal and external users reported suspicious mails sent from their mail accounts, which included suspicious links. These mails were sent as replies to messages already sent in the past, which made them appear legitimate.

First it was confirmed in the mail headers that the mail originated from the customers Exchange and was not spoofed from external sources. While further…

Read More