SECURITYDARK READING
Microsoft Exchange Flaw Lets Attackers Spoof Any Email Address
A flaw in Microsoft Exchange, dubbed 'Ghost-Sender', allows attackers to spoof any email address by exploiting Exchange Online or on-premises systems in hybrid mode with third-party mail servers or spam filters.
Mentioned
Related Signal
Adjacent reporting
- Patch Now: Another Palo Alto Auth Bypass Bug Under Active Exploit
- Robinhood account creation flaw abused to send phishing emails
- Scammers are abusing an internal Microsoft account to send spam links
- Exploited Exchange Server flaw turns OWA inboxes into script launchpads
- Fabricked: Misconfiguring Infinity Fabric to Break AMD SEV-SNP
- Hackers Used AI to Build a Zero-Day Exploit That Bypasses Two-Factor Authentication: Google