Tuesday, Sep 26, 2023
English News
  • Hyderabad
  • Telangana
  • AP News
  • India
  • World
  • Entertainment
  • Science and Tech
  • Sport
  • Business
  • Rewind
  • ...
    • NRI
    • View Point
    • cartoon
    • Columns
    • Education Today
    • Reviews
    • Property
    • Videos
    • Lifestyle
E-Paper
  • NRI
  • View Point
  • cartoon
  • Columns
  • Reviews
  • Education Today
  • Property
  • Videos
  • Lifestyle
Home | Tech | Attacks On Firms Using Microsoft Email Servers Tripled In 72 Hrs

Attacks on firms using Microsoft email servers tripled in 72 hrs

The country most attacked has been the US (21 per cent of all exploit attempts), followed by The Netherlands (12 per cent) and Turkey (12 per cent).

By IANS
Updated On - 03:08 PM, Mon - 15 March 21
Attacks on firms using Microsoft email servers tripled in 72 hrs
whatsapp facebook twitter telegram

New Delhi: Following the recently disclosed vulnerabilities in Microsoft business email servers, the hacking attempts on organisations using the services of those unpatched on-premises servers have multiplied by more than six times (or tripled) in the past 72 hours, a new report warned on Monday.

The country most attacked has been the US (21 per cent of all exploit attempts), followed by The Netherlands (12 per cent) and Turkey (12 per cent).

Most targeted industry sector has been government/military (27 per cent of all exploit attempts), followed by manufacturing (22 per cent), and then software vendors (9 per cent), according to Check Point Research.

“A full race has started among hackers and security professionals. Global experts are using massive preventative efforts to combat hackers who are working day-in and day-out to produce an exploit that can successfully leverage the remote code execution vulnerabilities in Microsoft Exchange,” the researchers from the cyber security firm noted.

Amid reports indicating that about five different hacking groups are attacking the business email servers of Microsoft, the tech giant has detected a new family of ransomware.

Named as ‘DearCry,’ the new ransomware is “being used after an initial compromise of unpatched on-premises Exchange Servers,” Microsoft said in a tweet last week. It uses the same four vulnerabilities that Microsoft linked to a new China-backed hacking group called “Hafnium”.

On March 3, Microsoft released an emergency patch for its Exchange Server product, the most popular mail server worldwide. All incoming and outgoing emails, calendar invitations and virtually anything accessed within Outlook goes through the Exchange server.

Orange Tsai from DEVCORE, a security firm based in Taiwan, reported two vulnerabilities in January.

Unaware of the full magnitude of these findings, Microsoft was prompted to further investigate their Exchange server.

The investigation uncovered five more critical vulnerabilities.

The vulnerabilities allow an attacker to read emails from an Exchange server without authentication or accessing an individual’s email account.

Further vulnerability chaining enables attackers to completely take over the mail server itself.

“If your organisation’s Microsoft Exchange server is exposed to the internet, and if it has not been updated with the latest patches, nor protected by a third party software, then you should assume the server is completely compromised,” warned Lotem Finkelsteen, Manager of Threat Intelligence, Check Point Software.

Right now, the purpose of the attack and what cybercriminals wanted within the network is still unknown.

“What we do know is that compromised servers could enable an unauthorized attacker to extract your corporate emails and execute malicious code inside your organisation with high privileges,” he noted.

Telangana Today Whatsapp
  • Follow Us :
  • Tags
  • business email
  • Microsoft
  • New Delhi

Related News

  • Compassionate civil servant whose heart beats for poor people is true civil servant: President Murmu

    Compassionate civil servant whose heart beats for poor people is true civil servant: President Murmu

  • Centre’s response sought on plea raising issue of assistance to persons with disabilities

    Centre’s response sought on plea raising issue of assistance to persons with disabilities

  • Congress OBC unit not happy with Telangana leadership

    Congress OBC unit not happy with Telangana leadership

  • Engines, Offices, and Storage Media: Not all is well in the World of Gaming

    Engines, Offices, and Storage Media: Not all is well in the World of Gaming

  • NCC wins multiple Awards at 17th Global Communication Conclave organized by PRCI

    NCC wins multiple Awards at 17th Global Communication Conclave organized by PRCI

  • Deadline to add nominees for mutual fund investors, demat account holders ends on Sep 30

    Deadline to add nominees for mutual fund investors, demat account holders ends on Sep 30

Latest News

  • Opinion: G20 and the evolving world order

    6 hours ago
  • Editorial: Restore electoral democracy

    6 hours ago
  • Bengaluru Bandh tomorrow: Section 144 to be imposed, schools and colleges shut

    6 hours ago
  • KTR, Owaisi raise concern on proposed delimitation of Lok Sabha seats

    7 hours ago
  • Asian Games success makes strong case for including cricket in 2028 Los Angeles Olympics

    7 hours ago
  • Khairtabad Ganesh: Hyderabad traffic police advice people to avoid these routes; details inside

    7 hours ago
  • Hyderabad: Musical fountains add charm to Durgam Cheruvu

    7 hours ago
  • Minister Harish Rao slams Governor’s rejection of MLC candidates

    7 hours ago

company

  • Home
  • About Us
  • Contact Us

business

  • Subscribe

telangana today

  • Telangana
  • Hyderabad
  • Latest News
  • Entertainment
  • World
  • Andhra Pradesh
  • Science & Tech
  • Sport

follow us

© Copyrights 2022 TELANGANA PUBLICATIONS PVT. LTD. All rights reserved. Powered by Veegam