New Wave of Cyberattacks Targeting MS Exchange Servers

SSRF attacks are increasingly popular among cybercriminals because, if a web app is vulnerable to SSRF, the attacker can send a request from the vulnerable server to any local network resource which isn’t otherwise accessible to the attacker. Findings ReviewBitdefender noted that, at the end of November 2022, there was an increase in attacks leveraging two exploit chains identified as ProxyNotShell and OWASSRF to target MS Exchange servers. Vulnerabilities explainedAttackers use two tactics in their new attacks against the MS Exchange servers.