New Brute Force Attacks Against SQL Servers Use PowerShell Wrapper

SecurityWeek RSS Feed

Microsoft has warned organizations of a new wave of brute force cyberattacks that target SQL servers and use a rather uncommon living-off-the-land binary (LOLBin).

Specifically, the attackers rely on a legitimate utility called sqlps.exe to achieve fileless persistence on SQL servers that use weak or default passwords.

read more