Dark Reading

Microsoft: Thousands of Public ASP.NET Keys Allow Web Server RCE

Website developers are unwittingly putting their companies at risk by incorporating publicly disclosed ASP.NET machine keys from code documentation and repositories into their applications, Microsoft ...
ZDNet

Thousands of etcd installs are leaking secret server keys online

Thousands of servers running etcd are exposing user credentials publicly on the Internet. According to security researcher Giovanni Collazo, a quick query made through the Shodan search engine ...
CRN

‘Patching Is Not Enough’ With Microsoft SharePoint Server Attacks: Experts

Microsoft is urging organizations to rotate machine keys for on-premises SharePoint Servers — an indicator that attackers are stealing the keys to enable further attacks, according to researchers.