How to mitigate this Owowa credential stealer and remote access panel.

rockbd · ‎Dec 15 2021

Hi All

Today, I got the following article describing the problem but not the solution. Can anyone know how to protect the Exchange OWA from this problem?

https://securelist.com/owowa-credential-stealer-and-remote-access/105219/

I am using MS Exchange 2016, and OWA is published with WAF.

Thanks in advance.

Justin Siegard · ‎Dec 16 2021

Just reading this myself an trying to understand if there's anything hybrid users need to do. I think we are ok as all of our mailboxes are hosted in Exchange online, our on premise servers are only for SMTP relays and management but I'm a little unclear.

rockbd · ‎Dec 16 2021

@Justin SiegardThanks for the replay. What about the on-premises solution of MS Exchange.

How to mitigate this Owowa credential stealer and remote access panel.

How to mitigate this Owowa credential stealer and remote access panel.

Re: How to mitigate this Owowa credential stealer and remote access panel.

Re: How to mitigate this Owowa credential stealer and remote access panel.

Products (50)

Special Topics (27)

Video Hub (462)

Most Active Hubs

Most Active Hubs

Video Hub

How to mitigate this Owowa credential stealer and remote access panel.

How to mitigate this Owowa credential stealer and remote access panel.

Re: How to mitigate this Owowa credential stealer and remote access panel.

Re: How to mitigate this Owowa credential stealer and remote access panel.