{"version":"1.0","provider_name":"Infoblox Blog","provider_url":"https:\/\/www.infoblox.com\/blog","author_name":"Michael Zuckerman","author_url":"https:\/\/www.infoblox.com\/blog\/author\/michael-zuckerman\/","title":"HAFNIUM Targeting Exchange Servers with Zero-Day Exploit","type":"rich","width":600,"height":338,"html":"<blockquote class=\"wp-embedded-content\" data-secret=\"TJZAvu9pnj\"><a href=\"https:\/\/www.infoblox.com\/blog\/security\/hafnium-targeting-exchange-servers-with-zero-day-exploit\/\">HAFNIUM Targeting Exchange Servers with Zero-Day Exploit<\/a><\/blockquote><iframe sandbox=\"allow-scripts\" security=\"restricted\" src=\"https:\/\/www.infoblox.com\/blog\/security\/hafnium-targeting-exchange-servers-with-zero-day-exploit\/embed\/#?secret=TJZAvu9pnj\" width=\"600\" height=\"338\" title=\"&#8220;HAFNIUM Targeting Exchange Servers with Zero-Day Exploit&#8221; &#8212; Infoblox Blog\" data-secret=\"TJZAvu9pnj\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\" class=\"wp-embedded-content\"><\/iframe><script type=\"text\/javascript\">\n\/* <![CDATA[ *\/\n\/*! This file is auto-generated *\/\n!function(d,l){\"use strict\";l.querySelector&&d.addEventListener&&\"undefined\"!=typeof URL&&(d.wp=d.wp||{},d.wp.receiveEmbedMessage||(d.wp.receiveEmbedMessage=function(e){var t=e.data;if((t||t.secret||t.message||t.value)&&!\/[^a-zA-Z0-9]\/.test(t.secret)){for(var s,r,n,a=l.querySelectorAll('iframe[data-secret=\"'+t.secret+'\"]'),o=l.querySelectorAll('blockquote[data-secret=\"'+t.secret+'\"]'),c=new RegExp(\"^https?:$\",\"i\"),i=0;i<o.length;i++)o[i].style.display=\"none\";for(i=0;i<a.length;i++)s=a[i],e.source===s.contentWindow&&(s.removeAttribute(\"style\"),\"height\"===t.message?(1e3<(r=parseInt(t.value,10))?r=1e3:~~r<200&&(r=200),s.height=r):\"link\"===t.message&&(r=new URL(s.getAttribute(\"src\")),n=new URL(t.value),c.test(n.protocol))&&n.host===r.host&&l.activeElement===s&&(d.top.location.href=t.value))}},d.addEventListener(\"message\",d.wp.receiveEmbedMessage,!1),l.addEventListener(\"DOMContentLoaded\",function(){for(var e,t,s=l.querySelectorAll(\"iframe.wp-embedded-content\"),r=0;r<s.length;r++)(t=(e=s[r]).getAttribute(\"data-secret\"))||(t=Math.random().toString(36).substring(2,12),e.src+=\"#?secret=\"+t,e.setAttribute(\"data-secret\",t)),e.contentWindow.postMessage({message:\"ready\",secret:t},\"*\")},!1)))}(window,document);\n\/\/# sourceURL=https:\/\/www.infoblox.com\/blog\/wp-includes\/js\/wp-embed.min.js\n\/* ]]> *\/\n<\/script>\n","thumbnail_url":"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/Hafnium.png","thumbnail_width":264,"thumbnail_height":215,"description":"HAFNIUM Targeting Exchange Servers with Zero-Day Exploit. Early in March, Microsoft released a set of Exchange Server Security Updates for various versions of Exchange servers. These updates were in response to published Microsoft Common Vulnerabilities and Exposure (CVE), the first of which allows threat groups to authenticate to the Exchange server. Once authenticated, the rest of the vulnerabilities allowed the threat actor to gain complete control and remotely execute commands on the exploited Microsoft Exchange servers anywhere in the world."}