AT&T Alien Labs Researcher Finds Sharepoint Vulnerability Exploited In The Wild

I’ve carried the story about Sharepoint several times. Here’s a discussion about what’s going on out there…:

AT&T Alien Labs researcher Chris Doman has seen a number of reports of active exploitation of a vulnerability in Microsoft Sharepoint (CVE-2019-0604).

One report by the Saudi Cyber Security Centre appears to be primarily targeted at organisations within the kingdom.

An earlier report by the Canadian Cyber Security Centre identified similar deployment of the tiny China Chopper web-shell to gain an initial foothold.


Original article here