Dark Reading

Microsoft: Thousands of Public ASP.NET Keys Allow Web Server RCE

Website developers are unwittingly putting their companies at risk by incorporating publicly disclosed ASP.NET machine keys from code documentation and repositories into their applications, Microsoft ...
CRN

‘Patching Is Not Enough’ With Microsoft SharePoint Server Attacks: Experts

Microsoft is urging organizations to rotate machine keys for on-premises SharePoint Servers — an indicator that attackers are stealing the keys to enable further attacks, according to researchers.