Microsoft warns of Chinese hacking group targeting Exchange email product 

Microsoft alerted customers March 3 of previously unknown security flaws within its Microsoft Exchange email server, which a Chinese hacking group has been targeting to steal user data. 

The group, called Hafnium, is targeting vulnerabilities in versions of Exchange Server, Microsoft's email and calendar application, that run on computer systems in physical offices. Hafnium previously has tried to steal information from infectious disease researchers and defense contractors, among others, according to the March 3 Microsoft blog post. 

The tech giant is urging customers to update their Exchange Server to patch four vulnerabilities and also warned of spinoff attacks. Hafnium launched "limited and targeted attacks" through leased private servers in the U.S., with hackers accessing victims' Exchange Server software through stolen passwords or vulnerabilities. The group then would install malware that helps extract user data. 

There is no evidence that individual customers, rather than businesses and other organizations, were affected by the attacks, and Microsoft's cloud-based Exchange Online email app also was unaffected, the company said. 

More articles on cybersecurity: 
10 types of cyberattacks to know and avoid
National Security Agency unveils zero-trust security model guidance: 5 guidelines
Hackers infiltrate Oxford University's biochemical systems, COVID-19 research  

Copyright © 2024 Becker's Healthcare. All Rights Reserved. Privacy Policy. Cookie Policy. Linking and Reprinting Policy.

 

Featured Whitepapers

Featured Webinars