Good news ! Hackbusters community is waiting for you !
KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at:

Mitigation Trial To Combat New MS Exchange Server Vuln


STEALTHbits Technologies announced mitigation capabilities for a recently-discovered* Microsoft Exchange privilege escalation attack that lets any user become a Domain Admin. STEALTHbits is making the capabilities available as a free trial for 30 days upon registration and request.

The attack method was detailed in the January 24, 2019 post Abusing Exchange: One API call away from Domain Admin of researcher Dirk-jan Mollema. It combines known vulns to achieve privilege escalation and attack Active Directory, as follows:

An attacker sends a request to Exchange that causes Exchange to respond with an NTLM authentication request over HTTP;
Exchange responds, and because NTLM is susceptible to man-in-the-middle relay attacks all the attacker has to do is forward the authentication request to Active Directory, which
thinks the attacker’s machine is Exchange and treats it with the privileges that Exchange normally has. The attacker is able to create new admin accounts or modify...(continued)

View All Trending Stories