While looking for additional Exchange vulnerabilities in the wake of this year’s zero-days, Kaspersky found an IIS add-on that harvests credentials from OWA whenever, and wherever, someone lo…
This content was originally published here.
New Microsoft Exchange credential stealing malware could be worse than phishing – Ramble in my Head
