A federal court in Texas gave the FBI the go-ahead to remove malware from on-premises Microsoft Exchange servers at organizations infected in a wave of voluminous zero-day attacks earlier this year. The FBI has been removing web shells, or scripts that allow remote access, from Exchange servers belonging to organizations in at least eight states, according to an unsealed application for a search warrant released by the DOJ. Experts say it may be the first time a court has authorized such an action in the U.S.”]
Source: https://www.careersinfosecurity.com/fbi-removing-web-shells-from-infected-exchange-servers-a-16399