techmeme.comTechmeme

Open Links In New Tab Mobile Archives Site News March 7, 2021, 2:10 AM Enter snapshot date and time: Cancel Mediagazer memeorandum WeSmirch Home River Leaderboards About Sponsor Events Sign up now and never miss a story! ⓧ Newsletter Top News Brian Krebs / Krebs on Security : Sources: at least 30K US organizations have been hacked by an aggressive Chinese espionage group exploiting unpatched flaws in Microsoft's Exchange Server — At least 30,000 organizations across the United States — including a significant number of small businesses, towns … More: Wall Street Journal , Wired , Ars Technica , New York Times , CyberScoop , MIT Technology Review , Insider , BBC , Washington Post , Microsoft Security … , us-cert.cisa.gov , Reuters , Channel Futures , CNET , The Verge , GitHub , HotHardware.com News , AppleInsider , Labnotes , The Cloudflare Blog , Thurrott , TechSpot , Forbes , SC Media , CNN , New York Post , MSPoweruser , SecurityWeek , Security Affairs , Slashdot , Financial Times , Engadget , The Hill , CRN , Bloomberg , and Daring Fireball Tweets: @c_c_krebs , @briankrebs , @balajis , @gossithedog , @nytimes , @c_c_krebs , @gordoncorera , @briankrebs , @ericgeller , @dabeard , @dnvolz , @ravivtamir , @wsjtech , @gavinsbaker , @briankrebs , @ahmalcolm , @kevthehermit , @somospostpc , @nixcraft , @briankrebs , @dnvolz , @indopac_info , @carriecordero , @nakashimae , @felixsalmon , @digiphile , @geneva_sands , @margbrennan , @baldingsworld , @a_greenberg , @gossithedog , @lopp , @suka_hiroaki , @stephaniecarvin , @0xmatt , @jason , @evacide , @johnhultquist , @artemr , @campuscodi , @sogonsec , @fireeye , @mandiant , @danlinden , @malwaretechblog , @kimzetter , @campuscodi , @iamshley_a , and @brianmfloyd More: Wall Street Journal : China-Linked Hack Hits Tens of Thousands of U.S. Microsoft Customers Andy Greenberg / Wired : Chinese Hacking Spree Hit an ‘Astronomical’ Number of Victims Dan Goodin / Ars Technica : Tens of thousands of US organizations hit in ongoing Microsoft Exchange hack New York Times : Thousands of Microsoft Customers May Have Been Victims of Hack Tied to China Sean Lyngaas / CyberScoop : Federal officials scramble to assess widening Microsoft Exchange Server fallout Patrick Howell O'Neill / MIT Technology Review : Four new hacking groups have joined an ongoing offensive against Microsoft's email servers Fatma Khaled / Insider : At least 30,000 US organizations, small businesses and government offices were victims of Microsoft Exchange hack: Krebs BBC : Microsoft hack: White House warns of ‘active threat’ of email attack Ellen Nakashima / Washington Post : Biden administration moving to address a global compromise by Chinese and other hackers of Microsoft email servers Microsoft Security Response Center : Microsoft Exchange Server Vulnerabilities Mitigations - updated March 6, 2021 us-cert.cisa.gov : Microsoft IOC Detection Tool for Exchange Server Vulnerabilities Reuters : As Microsoft email software hack spreads, experts brace for more impact Jeffrey Schwartz / Channel Futures : Microsoft Exchange Server Zero-Day Exploit Could Have Thousands of Victims Ian Sherr / CNET : Microsoft Exchange attackers strike more than 30,000 US organizations Mitchell Clark / The Verge : Move over, SolarWinds: 30,000 orgs' email hacked via Microsoft Exchange Server flaws GitHub : microsoft / CSS-Exchange Ben Funk / HotHardware.com News : Forget SolarWinds, Microsoft Email Server Flaws Left 30,000 US Orgs Hacked And Pwned Malcolm Owen / AppleInsider : Ongoing & enormous Microsoft Exchange server hack hits 30,000 US groups Assaf Arkin / Labnotes ( : Weekend Reading — Pick fewer battles than that Patrick R. Donahue / The Cloudflare Blog : Protecting against recently disclosed Microsoft Exchange Server vulnerabilities: CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065 Paul Thurrott / Thurrott : Hackers Have Exploited at Least 30,000 Exchange Servers Joe White / TechSpot : Microsoft Exchange exploited to hack 30,000 US organization emails Davey Winder / Forbes : Warning: ‘Hundreds Of Thousands’ Of Microsoft Servers Hacked In Ongoing Attack Joe Uchill / SC Media : Government briefed on breach of at least 30,000 Microsoft Exchange Servers CNN : White House warns of ‘active threat’ from Microsoft email hackers Isabel Vincent / New York Post : US small businesses reportedly targeted by Chinese hackers using Microsoft email flaw Surur / MSPoweruser : Microsoft release tool to help you see if your Exchange server has been compromised by Hafnium Mike Lennon / SecurityWeek : Microsoft Shares Additional Mitigations for Exchange Server Vulnerabilities Under Attack Pierluigi Paganini / Security Affairs : Microsoft releases IOC Detection Tool for Microsoft Exchange Server flaws BeauHD / Slashdot : At Least 30,000 US Organizations Newly Hacked Via Holes In Microsoft's Email Software Financial Times : White House warns of ‘large number’ of victims in Microsoft hack Mariella Moon / Engadget : Microsoft email server flaws exploited to hack at least 30,000 US organizations Maggie Miller / The Hill : White House calls Microsoft email breach an ‘active threat’ Michael Novinson / CRN : Hackers Steal Email From 30K US Orgs Via Microsoft Flaw: Report Alyza Sebenius / Bloomberg : Microsoft Server Flaws Raise Alarms at White House, DHS John Gruber / Daring Fireball : At Least 30,000 U.S. Organizations Newly Hacked via Holes in Microsoft's Email Software Tweets: Chris Krebs / @c_c_krebs : This is a crazy huge hack. The numbers I've heard dwarf what's reported here & by my brother from another mother (@briankrebs). Why, though? Is this a flex in the early days of the Biden admin to test their resolve? Is it an out of control cybercrime gang? Contractors gone wild? https://twitter.com/... @briankrebs : Sources who've briefed U.S. national security advisors say >30K U.S. organizations hacked by newly-found holes in Microsoft's Exchange email products, and that 100s of thousands of victim organizations worldwide now have web-based backdoors installed. https://krebsonsecurity.com/ ... @balajis : “The truth is, if you're running Exchange and you haven't patched this yet, there's a very high chance that your organization is already compromised.” https://twitter.com/... Kevin Beaumont / @gossithedog : Here is an official MS nmap script which identifies if your systems are vulnerable to Exchange vulns, regardless of the CU/SU situation. No authentication required. InfoSec peeps, use it to find your systems and validate patching. https://github.com/... @nytimes : At least 30,000 Microsoft customers' data have been compromised in an aggressive hacking campaign that the company said was likely sponsored by China. The attack is already believed to be bigger than the December intrusion by Russian hackers. https://www.nytimes.com/... Chris Krebs / @c_c_krebs : Thoughts on the Hafnium Exchange hack: (1) it's going to disproportionately impact those that can least afford it (SMBs, Edu, States, locals), (2) incident response teams are BURNED OUT & this is at a really bad time, (3) few orgs should be running exchange servers these days. https://twitter.com/... Gordon Corera / @gordoncorera : “the Chinese theft of email seemed stealthy and targeted......Then suddenly about a week ago, shortly before Microsoft issued its patch, the activity exploded.....It was, he said, almost as if they suspected a patch was forthcoming” ...