-
Microsoft fixes Windows bug breaking localhost HTTP connections
Microsoft has fixed a known issue breaking HTTP/2 localhost (127.0.0.1) connections and IIS websites after installing recent Windows security updates.
- October 17, 2025
- 09:58 AM
0
-
Microsoft Exchange gets ‘better’ patch to mitigate critical bug
The Exchange Team asked admins to deploy a new and "better" patch for a critical Microsoft Exchange Server vulnerability initially addressed in August.
- October 10, 2023
- 04:03 PM
0
-
New Webinar: Choose Your Own Investigation — Browser Attack Edition
Modern attacks have shifted focus to the browser, yet detection tools remain largely blind to the crucial activity happening there.
Join Push Security on February 11th for an interactive "choose-your-own-adventure" webinar on ClickFix, credential phishing, and other in-browser attacks we've observed in the wild.
-
Lazarus hackers hijack Microsoft IIS servers to spread malware
The North Korean state-sponsored Lazarus hacking group is breaching Windows Internet Information Service (IIS) web servers to hijack them for malware distribution.
- July 24, 2023
- 04:34 PM
- 0
-
Lazarus hackers target Windows IIS web servers for initial access
The notorious North Korean state-backed hackers, known as the Lazarus Group, are now targeting vulnerable Windows Internet Information Services (IIS) web servers to gain initial access to corporate networks.
- May 29, 2023
- 09:00 AM
- 1
-
US federal agency hacked using old Telerik bug to steal data
Last year, a U.S. federal agency's Microsoft Internet Information Services (IIS) web server was hacked by exploiting a critical .NET deserialization vulnerability in the Progress Telerik UI for ASP.NET AJAX component.
- March 15, 2023
- 12:39 PM
- 0
-
Hackers backdoor Microsoft IIS servers with new Frebniis malware
Hackers are deploying a new malware named 'Frebniss' on Microsoft's Internet Information Services (IIS) that stealthily executes commands sent via web requests.
- February 16, 2023
- 11:38 AM
- 0
-
Hackers use Microsoft IIS web server logs to control malware
The Cranefly hacking group, aka UNC3524, uses a previously unseen technique of controlling malware on infected devices via Microsoft Internet Information Services (IIS) web server logs.
- October 28, 2022
- 06:00 AM
- 0
-
Microsoft Exchange servers increasingly hacked with IIS backdoors
Microsoft says attackers increasingly use malicious Internet Information Services (IIS) web server extensions to backdoor unpatched Exchange servers as they have lower detection rates compared to web shells.
- July 26, 2022
- 02:01 PM
- 0
-
Microsoft Exchange servers worldwide backdoored with new malware
A newly discovered lightweight and persistent malware was used by attackers to backdoor Microsoft Exchange servers belonging to government and military organizations from Europe, the Middle East, Asia, and Africa.
- June 30, 2022
- 12:59 PM
- 2
-
New IceApple exploit toolset deployed on Microsoft Exchange servers
Security researchers have found a new post-exploitation framework that they dubbed IceApple, deployed mainly on Microsoft Exchange servers across a wide geography.
- May 11, 2022
- 06:00 AM
- 0
-
Hackers steal Microsoft Exchange credentials using IIS module
Threat actors are installing a malicious IIS web server module named 'Owowa' on Microsoft Exchange Outlook Web Access servers to steal credentials and execute commands on the server remotely.
- December 14, 2021
- 12:16 PM
- 0
-
Hacked sites push TeamViewer using fake expired certificate alert
Threat actors are compromising Windows IIS servers to add expired certificate notification pages that prompt visitors to download a malicious fake installer.
- September 20, 2021
- 04:15 PM
- 0
-
Why streaming a video could freeze Microsoft IIS servers
Microsoft August 2020 security patch fixed over 120 flaws. One of these flaws lets anyone freeze IIS servers by streaming videos, and seeking through them fast.
- August 29, 2020
- 12:12 PM
- 0
-
Microsoft IIS servers hacked by Blue Mockingbird to mine Monero
This month news broke about a hacker group, namely Blue Mockingbird, exploiting a critical vulnerability in Microsoft IIS servers to plant Monero (XMR) cryptocurrency miners on compromised machines.
- May 28, 2020
- 01:13 PM
- 0
-
Windows Servers Vulnerable to IIS Resource Exhaustion DoS Attacks
Microsoft published a security advisory on its Security Response Center which discloses that Windows Server and Windows 10 servers running Internet Information Services (IIS) are vulnerable to denial of service (DOS) attacks.
- February 21, 2019
- 02:19 PM
- 3
-
New KingMiner Threat Shows Cryptominer Evolution
A recently discovered cryptomining operation forces access to Windows servers to use their CPU cycles for minting Monero coins. Detected six months ago, the activity went through multiple stages of evolution.
- November 30, 2018
- 03:04 AM
- 0
-
New Reports Show Increased CyberThreats, User Risks Remain High
Two new reports from eSentire and Proofpoint show that that as online threats remain an issue, user security leaves much to be desired. The mismatch between the danger of cyberthreats and lack of user readiness could leave individuals or businesses at risk of serious losses to data or property.
- October 10, 2018
- 12:00 AM
- 1
-
Windows Servers Targeted for Cryptocurrency Mining via IIS Flaw
Hackers are leveraging an IIS 6.0 vulnerability to take over Windows servers and install a malware strain that mines the Electroneum cryptocurrency.
- April 16, 2018
- 04:57 AM
- 3
-
Copy-Pasting Malware Dev Made $63,000 From Mining Monero on IIS Servers
A malware author (or authors) has made around $63,000 during the past five months by hacking unpatched IIS 6.0 servers and mining Monero.
- September 28, 2017
- 09:00 AM
- 0
-
New IIS 6.0 Zero-Day Exploited in Live Attacks Since July 2016
Since July 2016, attackers have been using a zero-day in IIS 6.0 to compromise and take over Windows servers. The vulnerability only affects IIS 6.0, which was released in November 2010, and shipped with Windows Server 2003 and Windows XP Professional x64 Edition.
- March 29, 2017
- 07:07 AM
- 1
