Microsoft has recently uncovered a new method used by cyber attackers to carry out their malicious activities. This technique involves leveraging vulnerabilities within the mechanism inside HTML pages. The attackers manipulate ViewState data by serializing it in Base64 format, allowing for encryption and signing to prevent tampering. This helps in safeguarding against fraudulent activities. Additionally, the attackers transfer ViewState data in queries during each request. This data is then sent back to the server, where it is deserialized and utilized to restore the page’s state.
/Reports, release notes, official announcements.