Attackers use Exchange vulnerability for crypto miners
Sophos Labs has identified an attacker using an Exchange vulnerability for cryptomining: “Admins should scan the Exchange server for web shells and monitor servers for unusual processes that appear to appear out of nowhere. High processor usage by an unknown program could be a sign of crypto mining activity or ransomware,” said Andrew Brandt, Principal Threat Researcher at Sophos. The well-known, recent problems relating to the Microsoft Exchange Server vulnerabilities are far from over: Even after the security patches of March 2nd and 9th, new attackers are still using the exploit for their attacks...