Microsoft on Tuesday confirmed that it is examining a critical vulnerability in older editions of Internet Information Services (IIS) server, a day after a hacker posted exploit code online.

The Cranefly hacking group, aka UNC3524, uses a previously unseen technique of controlling malware on infected devices via Microsoft Internet Information Services (IIS) web server logs.

I run both IIS and Apache Web servers in my honeynet. The Apache Web server gets attacked significantly more than the IIS server does. Also, most reported hacks are against Apache Web servers.

A proof-of-concept exploit has been published for a zero-day vulnerability in Microsoft Internet Information Services 6.0, a version of the web server that's no longer supported.

A proof-of-concept exploit has been published for a zero-day vulnerability in Microsoft Internet Information Services 6.0, a version of the web server that's no longer supported.

Threat actors are installing a backdoor into installations of Microsoft's Internet Information Services (IIS) Windows web server that isn't being caught by some online file scanning services, say ...

Microsoft is warning Outlook on the Web and Exchange Server customers to watch out for more malicious IIS extensions.

Port80 Software said the results, reported as part of the company's January 2004 web server survey, should have instead reflected the fact that at least 49 percent of the 1000 most visited sites ...