Friday, January 17, 2025

IIS

Hackers Deploy Web Shell To Abuse IIS Worker And Exfiltrate Data

An attacker exploited a vulnerability in the batchupload.aspx and email_settings.aspx pages on the target server that allowed them to upload a malicious web shell to the IIS worker process...

New Malware Dubbed SessionManager Targeting Microsoft IIS Servers in the Wild

Researchers from Kaspersky seek out more IIS backdoors after the discovery of ‘Owowa’, a malicious IIS module deployed by attackers on Microsoft Exchange Outlook...

Malicious HTTP/2 Requests on IIS Server Cause The System CPU Usage to Spike to 100%

Microsoft Security advisory released a new flaw in IIS server that Microsoft  the system CPU usage to spike to 100% when malicious HTTP/2...

No posts to display