Microsoft on Fridaydisclosedit has made more improvements to themitigation methodoffered as a means to prevent exploitation attempts against the newly disclosed unpatched security flaws in Exchange Server. To that end, the tech giant has revised the blocking rule in IIS Manager from “.*autodiscover.json.Powershell.” to “(?=.*autodiscover.json)(?=.*powershell).”
The list of