Infected Exchange servers, Source: Rapid7 – Click to zoom And the Volexity blog (whose security researchers discovered the attack and vulnerabilities) has this post on the subject.
I had reported about it in various blog posts (see links at the end of article). The vulnerabilities can only be patched since Maby security updates released by Microsoft. Attacks from the suspected state-affiliated Chinese hacker group Hafnium have been using various vulnerabilities (see Exchange server 0-day exploits are actively exploited) in on-premise Exchange Servers to penetrate the instances for months. I had mentioned it in the blog post Exchange Hack News – Test tools from Microsoft and others. While Meltdown refers to a hardware vulnerability, it also described perfectly, What has happened to Microsoft's Exchange Server.
0 kommentar(er)
