A China-aligned threat cluster known as SHADOW-EARTH-053 is targeting government bodies, critical infrastructure, and technology firms by exploiting vulnerable Microsoft Exchange and IIS servers. The campaign mainly focuses on South, East, and Southeast Asia, but researchers also observed activity against one NATO member state. The attackers are exploiting older, already-patched Microsoft Exchange flaws, including the […]
The post SHADOW-EARTH-053 Deploys ShadowPad Through Exchange Server Exploits appeared first on Cyber Security News.