FBI Removes Web Shells From Compromised Third-Party Microsoft Exchange Servers Without Notifying the Owners
The FBI removed web shells from compromised Microsoft Exchange Servers through a court order without notifying the server owners.
Microsoft security threat intelligence earlier said that Chinese malicious cyber actors exploited Microsoft Exchange server vulnerabilities to install remote administration web shells for exfiltrating data and delivering additional malware payloads.
Read more...