An ongoing phishing operation that stole an estimated 400,000 OWA and Office 365 credentials since December has now expanded to abuse new legitimate services to bypass secure email gateways (SEGs).
iTWire - Radware reports global hacking spree in MS Exchange Servers itwire.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from itwire.com Daily Mail and Mail on Sunday newspapers.
Mar 16, 2021
Since the revelation of four zero-day vulnerabilities currently affecting Microsoft Exchange Server, Check Point Research (CPR) seen hundreds of exploit attempts against organisations worldwide.
In a single 24-hour periods, the number exploitation attempts on tracked organisations doubled every two to three hours, with Government/Military being the most targeted (17% of all exploit attempts), followed by Manufacturing (14%), and Banking (11%).
To date, hackers have yet to carry out the full chain of attack successfully, according to CPR researchers.
Since the recently-disclosed vulnerabilities on Microsoft Exchange Servers, a full race has started amongst hackers and security professionals. Global experts are using massive preventative efforts to combat hackers who are working day-in and day-out to produce an exploit that can successfully leverage the remote code execution vulnerabilities in Microsoft Exchange.
Serious vulnerabilities in Microsoft Exchange have been exploited by at least 10 APT groups that have been collectively been hitting thousands of companies over the
It appears that a number of other state-sponsored and rogue hacking groups were tipped off to the vulnerability. Several additional hacking groups have recently been identified as taking advantage of the vulnerability shortly after the patch was released.