How to mitigate this Owowa credential stealer and remote access panel.

Question

Hi All&nbsp;Today, I got the following article describing the problem but not the solution. Can anyone know how to protect the Exchange OWA from this problem?&nbsp;https://securelist.com/owowa-credential-stealer-and-remote-access/105219/&nbsp;I am using MS Exchange 2016, and OWA is published with WAF.&nbsp;Thanks in advance.&nbsp;

justinsiegard · Answer

Just reading this myself an trying to understand if there's anything hybrid users need to do. I think we are ok as all of our mailboxes are hosted in Exchange online, our on premise servers are only for SMTP relays and management but I'm a little unclear.

rockbd · Answer

justinsiegardThanks for the replay. What about the on-premises solution of MS Exchange.

Forum Discussion

How to mitigate this Owowa credential stealer and remote access panel.

2 Replies