Computerworld

Opinion: Web server security: Is IIS or Apache more secure

Continuing the theme from my previous column on the relative security of Internet Information Services (IIS) vs. Apache, I’ve come across more studies to support my initial conclusion. If you remember ...
Ars Technica

(WCF) Using net.pipe from Web application under IIS 6.0

Hi all.<BR><BR>I thought consuming a WCF service (named pipe) hosted in a Windows service on the Web server (2k3) would be a good idea. It worked well enough when debugging in VS2008, but there my ...
Ars Technica

What are some common ways to hang IIS 5 using asp?

So I wrote a small web app which works great for a few minutes maybe 10 to 50 requests, but then inexplicably hangs IIS requiring an iisreset to fix. I've been messing with it for a few days, with no ...
ZDNet

Microsoft warns of stealthy backdoors used to target Exchange Servers

There's been an uptick in malware native to Microsoft's Internet Information Services (IIS) web server that is being used to install backdoors or steal credentials and is hard to detect, warns ...
Bleeping Computer

Hackers steal Microsoft Exchange credentials using IIS module

Threat actors are installing a malicious IIS web server module named 'Owowa' on Microsoft Exchange Outlook Web Access servers to steal credentials and execute commands on the server remotely. The ...
CSOonline

Hackers breach Microsoft IIS services using Cityworks RCE bug

Hackers are exploiting a high-severity remote code execution (RCE) flaw in Cityworks deployments — a GIS-centric asset and work order management software — to execute codes on a customers’ Microsoft ...

Microsoft fixes Windows bug breaking localhost HTTP connections

Microsoft has fixed a known issue breaking HTTP/2 localhost (127.0.0.1) connections and IIS websites after installing recent Windows security updates.