Security firm, Cybereason discovered this malicious malware hiding in an OWA server of an undisclosed company. It was only through the customer’s vigilance in reporting application abnormalities that prompted an investigation into the cause. Cybereason quickly found a suspicious DLL file and uncovered the attack.
Since Microsoft’s Outlook Web App has public and internal web faces, it is a juicy target for sophisticated hackers since this exploit gives them access to an entire company’s domain credentials.
It is not known at this time if this was only a targeted attack on a particular company or if it is more widespread. Time will tell. In the meantime, be vigilant.
XSolutions is a Managed Services Provider (MSP) and provides 24/7/365 remote monitoring, scheduled workstation and server maintenance, Help Desk Services, Business Continuity Solutions, Cloud & Hosted Services and IT Consulting. Call us at (845) 362-9675 and see how we can help your company.