Malicious Exchange Server Module Hoovers Up Outlook Credentials
Researchers have uncovered a previously unknown malicious Internet Information Services (IIS) module, dubbed Owowa, that steals credentials when users log into Microsoft Outlook Web Access (OWA).