Bleeping Computer

Hackers use Microsoft IIS web server logs to control malware

The Cranefly hacking group, aka UNC3524, uses a previously unseen technique of controlling malware on infected devices via Microsoft Internet Information Services (IIS) web server logs. Microsoft ...
Computerworld

Opinion: Web server security: Is IIS or Apache more secure

Continuing the theme from my previous column on the relative security of Internet Information Services (IIS) vs. Apache, I’ve come across more studies to support my initial conclusion. If you remember ...
Dark Reading

Lazarus Group Striking Vulnerable Windows IIS Web Servers

The North Korean state-backed threat actor Lazarus Group has reinvented its ongoing espionage campaign by exploiting known vulnerabilities in unpatched Windows IIS Web servers to deploy its ...
CSOonline

Lazarus group exploits Windows IIS servers to distribute malware

North Korean cybercrime group, Lazarus, has been found to be attacking Windows Internet Information Service (IIS) web servers and using them as distribution points for their malware, according to ...
Ars Technica

Researchers unearth Windows backdoor that’s unusually stealthy

Researchers have discovered a clever piece of malware that stealthily exfiltrates data and executes malicious code from Windows systems by abusing a feature in Microsoft Internet Information Services ...
Bleeping Computer

Latest Web Server news

The notorious North Korean state-backed hackers, known as the Lazarus Group, are now targeting vulnerable Windows Internet Information Services (IIS) web servers to gain initial access to corporate ...
Computerworld

Web server security wars: Is IIS or Apache more secure

Continuing the theme from my previous column on the relative security of Internet Information Service (IIS) vs. Apache, I’ve come across more studies to support my initial conclusion. If you remember, ...