Microsoft Exchange Server Hack Analysis

[[email protected]]

It's been over a month since Microsoft admitted that a data breach occurred on its on-premise Microsoft Exchange Servers . Attackers gained administrator privileges on the affected servers, access to users' emails and passwords, and also to devices connected to the same network. More revelations have also been made in this regard.

Mailfence - Get your free and secure email.


4.1 based on 177 user reviews

Register
Background of the Microsoft Exchange Server hack
On January 5, 2021, a researcher from security testing company list of algeria whatsapp phone numbers DEVCORE issued the first known report of the vulnerability to Microsoft. This was verified by Microsoft on January 8. Several breaches in Microsoft Exchange Server were also observed by other actors that same month, and all of them alerted Microsoft.

Between February 26 and 27 , attackers began massively scanning Microsoft Exchange Servers to add "backdoors" (software that generates clandestine access points). This appears to have been carried out in anticipation of a software patch announced by Microsoft.



On March 2 , Microsoft released updates to patch four zero-day vulnerabilities in the Microsoft Exchange Server codebase, attributing the attack (with high confidence) to a known hacking group . Other hacking groups have subsequently been linked to the attack.