Page 5 - மைக்ரோசாஃப்ட் பாதுகாப்பு ஸ்கேனர் News Today : Breaking News, Live Updates & Top Stories | Vimarsana
No sign of Exchange-related ransomware hitting UK orgs, claims NCSC as it urges admins to scan for compromises
theregister.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from theregister.com Daily Mail and Mail on Sunday newspapers.
Why the Microsoft Exchange Server attack isn t going away soon
reseller.co.nz - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from reseller.co.nz Daily Mail and Mail on Sunday newspapers.
More hacking groups join Microsoft Exchange attack frenzy
By
More state-sponsored hacking groups have joined the ongoing attacks targeting tens of thousands of on-premises Exchange servers impacted by severe vulnerabilities tracked as ProxyLogon.
After Microsoft s initial report that the vulnerabilities were actively exploited by a Chinese APT group named Hafnium, Slovak internet security firm ESET shared info on at least three other Chinese-backed hacking groups abusing the ProxyLogon flaws in ongoing attacks.
Besides those three (APT27, Bronze Butler aka Tick, and Calypso), ESET also said that it also identified several additional yet-unclassified clusters.
In a Friday update to their announcement, Microsoft said that several other threat actors beyond HAFNIUM are also exploiting the four critical Exchange flaws.
Thinkstock
On March 2, Microsoft revealed a critical cybersecurity offensive launched by a foreign adversary against organizations in the United States. The company attributed the attacks to a Chinese advanced persistent threat group it calls Hafnium. Microsoft quickly announced patches for the four previously unknown vulnerabilities in Exchange Server that the malicious actors had exploited.
Reports circulated last week that the hackers compromised at least 30,000, and likely hundreds of thousands, of unpatched Exchange servers. As a consequence, incident responders are working around the clock responding to this latest threat, which they consider an actual attack on public and government IT infrastructure, unlike the still-ongoing, primarily espionage-oriented SolarWinds hack.
vimarsana © 2020. All Rights Reserved.