Search results
Results from the Health.Zone Content Network
The first breach of a Microsoft Exchange Server instance was observed by cybersecurity company Volexity on 6 January 2021. [1] By the end of January, Volexity had observed a breach allowing attackers to spy on two of their customers, and alerted Microsoft to the vulnerability. After Microsoft was alerted of the breach, Volexity noted the ...
Microsoft named Hafnium as the group responsible for the 2021 Microsoft Exchange Server data breach, and alleged they were "state-sponsored and operating out of China". [3] [4] According to Microsoft, they are based in China but primarily use United States-based virtual private servers, [6] and have targeted "infectious disease researchers, law firms, higher education institutions, defense ...
Kaseya VSA ransomware attack. On 2 July 2021, a number of managed service providers (MSPs) and their customers became victims of a ransomware attack perpetrated by the REvil group, [1] causing widespread downtime for over 1,000 companies. [2][3] The attack was carried out by exploiting a vulnerability in VSA (Virtual System Administrator), a ...
Microsoft has confirmed two unpatched Exchange Server zero-day vulnerabilities are being exploited by cybercriminals in real-world attacks. Vietnamese cybersecurity company GTSC, which first ...
Microsoft Exchange Server is a mail server and calendaring ... but were exploited only from January 2021 onwards. The attack affected the email systems of an ...
February 8: Foxconn is hacked by a hacker group, "Swagg Security", releasing a massive amount of data including email and server logins, and even more alarming—bank account credentials of large companies like Apple and Microsoft. Swagg Security stages the attack just as a Foxconn protest ignites against terrible working conditions in southern ...
The attacks were believed to be the third major data breach against the U.S. in the previous year behind the 2020 United States federal government data breach and the 2021 Microsoft Exchange Server data breach.
The attackers exploited flaws in Microsoft products, services, and software distribution infrastructure. [23] [15] [9] [18]At least one reseller of Microsoft cloud services was compromised by the attackers, constituting a supply chain attack that allowed the attackers to access Microsoft cloud services used by the reseller's customers.