News, tips, advice, support for Windows, Office, PCs & more
Home icon Home icon Home icon Email icon RSS icon

We're community supported and proud of it!

  • At Least 30,000 U.S. Organizations Newly Hacked Via Microsoft’s Email Software

    Home Forums Code Red – Security/Privacy advisories At Least 30,000 U.S. Organizations Newly Hacked Via Microsoft’s Email Software

    • This topic has 12 replies, 9 voices, and was last updated 1 month ago.
    Viewing 6 reply threads
    • Author
      Posts
      • #2348252

        From “Krebs on Security”:

        “At least 30,000 organizations across the United States — including a significant number of small businesses, towns, cities and local governments — have over the past few days been hacked by an unusually aggressive Chinese cyber espionage unit that’s focused on stealing email from victim organizations, multiple sources tell KrebsOnSecurity.”

        https://krebsonsecurity.com/2021/03/at-least-30000-u-s-organizations-newly-hacked-via-holes-in-microsofts-email-software/

        One word: Ow.

        Win7 Pro SP1 64-bit ESU, Dell Latitude E6330, Intel CORE i5 "Ivy Bridge", 12GB RAM, Group "0Patch", Multiple Air-Gapped backup drives in different locations. Linux Mint Greenhorn
        --
        "A committee is the only known form of life that can have least four legs and no brain."

        -Robert Heinlein

        1 user thanked author for this post.
      • #2348265
        Alex5723
        AskWoody Plus

        Will Microsoft compensate the hacked small businesses, towns, cities and local governments..over the damages inflicted due to insecure exchange servers ?

        1 user thanked author for this post.
        • #2348282
          Paul T
          AskWoody MVP

          As your Exchange security needed to be lax in the first place, I doubt you can blame MS.

          The initial attack requires the ability to make an untrusted connection to Exchange server port 443. This can be protected against by restricting untrusted connections, or by setting up a VPN to separate the Exchange server from external access

          From https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-26855

          cheers, Paul

          1 user thanked author for this post.
      • #2348294
        Alex5723
        AskWoody Plus

        As your Exchange security needed to be lax in the first place

        So, Microsoft will always find a way to blame its customers to for its security holed software ?

        1 user thanked author for this post.
        • #2348305
          opti1
          AskWoody Plus

          Legalese buried in the EULA likely has MS covered . . .

        • #2348309
          wavy
          AskWoody Plus

          So, Microsoft will always find a way to blame its customers to for its security holed software ?

          Probably they have a whole team devoted to that.

          🍻

          Just because you don't know where you are going doesn't mean any road will get you there.
          2 users thanked author for this post.
          • #2348379
            OscarCP
            AskWoody Plus

            Customers could sue MS for damages, but to have a chance to be successful they should do it together, with a class-action lawsuit. Perhaps the EULA precludes them for doing that (long time since last read it). If so, national governments, besides doing what they can to stop this bad hacking, could sue MS. They should sue it anyway. After all, at least sections of each of them use MS software and MS servers.

            So, governments, what are you going to do about this? The ball is now in your respective courts.

            Windows 7 Professional, SP1, x64 Group W (ex B) & macOS Mojave + Linux (Mint)

      • #2348429
        Alex5723
        AskWoody Plus

        As your Exchange security needed to be lax in the first place, I doubt you can blame MS.



        @Paul
        T. You are probably blinded by Microsoft’s PR of security, usability…
        It is NOT the roll of customers to defend Microsoft’s OS and software (3rd party anti-virus, anti-rensomware, anti-rootkit, creating images, backups..closing ports, using vpn..). It is Microsoft’s duty to defend its customers against outside threats.

        • This reply was modified 1 month ago by Alex5723.
        1 user thanked author for this post.
        • #2348436
          Tom
          AskWoody Plus

          That’s like saying if you have a full-blown house security system, and you leave your front door open while you’re away on vacation, and you get robbed, it’s the security system vendor who should have protected you from your own stupidity.

      • #2348447
        Alex5723
        AskWoody Plus

        full-blown house security system

        full-blown house security system will lock the doors if you leave them open, just like Microsoft’s OS should do.
        Nothing can fix Microsoft’s incompetence.
        Microsoft exchange security patches (after the horses has bolted the stable) should had scanning and removing all traces of the hacks, if found, before applying the patches.

        • This reply was modified 1 month ago by Alex5723.
        • This reply was modified 1 month ago by Alex5723.
        1 user thanked author for this post.
      • #2348450
        Microfix
        AskWoody MVP

        This, whilst disturbing and increasing at present, has the potential to be EVEN WORSE if strains of ransomware are injected.
        The whole issue is a can of worms on a stick of ignited TNT!
        Question is…how long is the fuse :-O

        1 user thanked author for this post.
      • #2349447
        ClearThunder
        AskWoody Plus

        Looks like things are heating up over the Exchange Hack.  The full brunt of which is still not know, but is rearing it’s ugly head every day with news that ten hacking groups are involved.

        Reuters

         

        "Censorship is thought control" ----- Ronald Reagan

        1 user thanked author for this post.
    Viewing 6 reply threads

    Please follow the -Lounge Rules- no personal attacks, no swearing, no politics or religion.

    Reply To: At Least 30,000 U.S. Organizations Newly Hacked Via Microsoft’s Email Software

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.