Further information and analysis is provided by this Microsoft article, as well as this US-CERT warning. and Germany likely to have more than 10,000 instances. In this article, security vendor Rapid7 estimates that there are 170,000 Exchange servers at risk, with "hot spots" in the U.S. Infected Exchange servers, Source: Rapid7 – Click to zoom And the Volexity blog (whose security researchers discovered the attack and vulnerabilities) has this post on the subject.
I had reported about it in various blog posts (see links at the end of article). The vulnerabilities can only be patched since Maby security updates released by Microsoft. Attacks from the suspected state-affiliated Chinese hacker group Hafnium have been using various vulnerabilities (see Exchange server 0-day exploits are actively exploited) in on-premise Exchange Servers to penetrate the instances for months. I had mentioned it in the blog post Exchange Hack News – Test tools from Microsoft and others. While Meltdown refers to a hardware vulnerability, it also described perfectly, What has happened to Microsoft's Exchange Server.
0 kommentar(er)
