Malicious Exchange Server Module Hoovers Up Outlook Credentials
-
“Owowa” stealthily lurks on IIS servers, waiting to harvest successful logins when an Outlook Web Access (OWA) authentication request is made.
https://threatpost.com/malicious-exchange-server-module-outlook-credentials/177077/