If you suspect an active attack on your business, call our emergency hotline at: 612-399-9680
If you suspect an active attack on your business, call our emergency hotline at: 612-399-9680
Alpha Comply Login »

Blue Team Alpha Insights

The Blog

Home » Vulnerability Management

ProxyNotShell Advisory – Microsoft Exchange Zero-day Vulnerabilities

Executive summary On September 30th, 2022, GTSC, a Vietnamese cybersecurity company, released a warning stating, “while providing SOC service to a customer, GTSC Blueteam detected exploit requests in IIS logs with the same format as ProxyShell vulnerability.” This vulnerability would allow attackers to formulate a specially crafted HTTP request to the on-prem exchange server over port 443, enabling the attacker to execute malicious remote code on the system as the “SYSTEM” user. Microsoft confirmed both zero-day vulnerabilities late the evening of September 29, 2022 and said they were aware of “limited, targeted attacks using the two vulnerabilities to get into

Read More »
Indicators of a Compromise

Why You Should Investigate IOCs, and What Can Happen if You Don’t

What is an indicator of compromise (IOC)?  An indicator of compromise is a piece of digital forensic data that indicates a potential network breach. This information helps security investigators identify malicious or suspicious activity including threats, data breaches, and malware. IOCs can be collected during routine cybersecurity scans or manually if suspicious activity is detected.  Since IOC identification is primarily reactive, the discovery of an IOC typically means that an organization has already been compromised. However, this detection helps organizations to stop in-process attacks sooner and reduce the attack’s impact. In addition, investigating IOCs can be used to repair existing

Read More »
More Blue Team Alpha Options
Security Topics
Recent Posts

Want to Learn More?

CONTACT US TODAY

Services

About

Twitter Linkedin Facebook Instagram Youtube

Quick Links

Contact

Emergency Hotline            612-399-9680
General Number
612-888-9674
Mailing Address
1360 University Ave Ste 104 Unit 122
St. Paul MN 55104

© Copyright 2021 Blue Team Alpha. All Rights Reserved. Privacy Policy & Terms of Service
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.