Owowa, a malicious IIS Server module used to steal Microsoft Exchange credentials

16 December 2021

Threat actors are using a malicious Internet Information Services (IIS) Server module, dubbed Owowa, to steal Microsoft Exchange credentials. Kaspersky researchers spotted malicious actors while deploying a previously undiscovered binary, an Internet Information Services (IIS) webserver module dubbed “Owowa,” on Microsoft Exchange Outlook Web Access servers to steal credentials and for remote code execution.

Read full article on Security Affairs

Date:

16 December 2021

Categorie(s):

NEWS

Tag(s):

Credentials, Malicious, Microsoft, Modules, Servers

Microsoft Outlook Flaw Exploited by Russia’s APT28 to Hack Czech, German Entities4 May 2024
Ex-Cybersecurity Consultant Jailed For Trading Confidential Data4 May 2024
Microsoft plans to lock down Windows DNS like never before. Here’s how.4 May 2024
Kaspersky hits back at claims its AI helped Russia develop military drone systems4 May 2024
Kaspersky hits back at claims it helped Russia develop military drone systems3 May 2024