cve-2023-21674 ALPC Vulnerability

CVE-2023-21674 – Actively Exploited ALPC Vulnerability

On the first Patch Tuesday of 2023, Microsoft fixed a whopping total of 98 flaws. Among them is a publicly disclosed SMB Witness Service zero-day CVE-2023-21549, and an actively exploited EoP vulnerability tracked under CVE-2023-21674. With active exploitation witnessed in the wild, the latter commands special consideration.

ProxyNotShell

ProxyNotShell – The Never Ending Saga

With the ever-changing developments on the ProxyNotShell Exchange Server vulnerability, I’d like to write a quick post covering the latest mitigation steps to take in order to keep your mail servers secure.