Microsoft-owned Github pulls down proof-of-concept code posted by researcher.
By Dan Goodin
Github has ignited a firestorm after the Microsoft-owned code-sharing repository removed a proof-of-concept exploit for critical vulnerabilities in Microsoft Exchange that have led to as many as
100,000 server infections in recent weeks.ProxyLogon is the name that researchers have given both to the four Exchange vulnerabilities under attack in the wild and the code that exploits them. Researchers say that Hafnium, a state-sponsored hacking group based in China, started exploiting ProxyLogon in January, and within a few weeks, five other APTs - short for advanced persistent threat groups - followed suit. To date, no fewer than 10 APTs have used ProxyLogon to target servers around the world.
formatting link