Hackers Using Automated Attack to Exploit Exchange Server and SQL Injection Vulnerabilities

[[correlate]]

Content source

https://gbhackers.com/hackers-automated-exchange-server/?

Recently, cybersecurity analysts at Prodraft's threat intelligence team detected that the hacker group FIN7 was actively exploiting vulnerabilities in Microsoft Exchange and SQL injection through an automated attack system in an attempt to perform the following illicit activities

Hackers Using Automated Attack to Exploit Exchange Server

There is a system for automatic attacks called Checkmarks that has been discovered by Prodaft. So, in this scenario Checkmarks works as a scanner that scans for vulnerabilities that could result in remote code execution or privilege elevation in Microsoft Exchange.

gbhackers.com

 

[[correlate]]

The notorious FIN7 hacking group uses an automated attack system that exploits Microsoft Exchange and SQL injection vulnerabilities to breach corporate networks, steal data, and select targets for ransomware attacks based on financial size.

This system was discovered by Prodaft's threat intelligence team, which has been closely following FIN7 operations for years now.
In a report shared with BleepingComputer before publication, Prodaft reveals details about FIN7's internal hierarchy, affiliations with various ransomware projects, and a new SSH backdoor system used for stealing files from compromised networks.

FIN7 hackers create auto-attack platform to breach Exchange servers

The notorious FIN7 hacking group uses an auto-attack system that exploits Microsoft Exchange and SQL injection vulnerabilities to breach corporate networks, steal data, and select targets for ransomware attacks based on financial size.

www.bleepingcomputer.com