Skip to main content

Microsoft Server Hack

Microsoft server hack likely single actor, thousands of firms now vulnerable, researchers say





Unclear who is behind attacks


LONDON, July 21 (Reuters) - A global attack on Microsoft server software used by thousands of government agencies and businesses to share documents within organisations is likely the work of a single actor, a cybersecurity researcher said on Monday. Microsoft on Saturday issued an alert about "active attacks" on SharePoint servers used within organisations. It said that SharePoint Online in Microsoft 365, which is in the cloud, was not hit by the exploit, also known as a "zero day" because it was previously unknown to cybersecurity researchers.

"Based on the consistency of the tradecraft seen across observed attacks, the campaign launched on Friday appears to be a single actor. However, it's possible that this will quickly change," Rafe Pilling, Director of Threat Intelligence at Sophos, a British cybersecurity firm. That tradecraft included the sending of the same digital payload to multiple targets, Pilling added. Microsoft said it had "provided security updates and encourages customers to install them," a company spokesperson said in an emailed statement.

It was not clear who was behind the ongoing hack. The FBI said on Sunday it was aware of the attacks and was working closely with its federal and private-sector partners, but offered no other details. Britain's National Cyber Security Centre did not immediately respond to a request for comment. The Washington Post said unidentified actors in the past few days had exploited a flaw to launch an attack that targeted U.S. and international agencies and businesses.

According to data from Shodan, a search engine that helps to identify internet-linked equipment, over 8,000 servers online could theoretically have already been compromised by hackers. Those servers include major industrial firms, banks, auditors, healthcare companies, and several U.S. state-level and international government entities.

"The SharePoint incident appears to have created a broad level of compromise across a range of servers globally," said Daniel Card of British cybersecurity consultancy, PwnDefend. "Taking an assumed breach approach is wise, and it’s also important to understand that just applying the patch isn’t all that is required here." (Reporting by James Pearson, Editing by Nick Zieminski)

Microsoft server breach, cybersecurity, data leak, threat actors, zero-day vulnerability, nation-state attack, Microsoft Exchange hack, email compromise, data exfiltration, cloud infrastructure breach, security patch, malware injection, APT group, vulnerability exploitation, cyber espionage, authentication bypass, system compromise, critical infrastructure, Microsoft threat intelligence, incident response

#MicrosoftHack, #ServerBreach, #CyberSecurity, #DataLeak, #ThreatActors, #ZeroDay, #NationStateAttack, #ExchangeHack, #EmailSecurity, #Malware, #APT, #Exfiltration, #MicrosoftBreach, #CloudSecurity, #PatchNow, #InfoSec, #CyberThreat, #SecurityAlert, #HackingNews, #IncidentResponse

Comments

Popular posts from this blog

Global Lighthouse Network

Smart, sustainable manufacturing: 3 lessons from the Global Lighthouse Network Launched in 2018, when more than 70% of factories struggled to scale digital transformation beyond isolated pilots, the Global Lighthouse Network set out to identify the world’s most advanced production sites and create a shared learning journey to up-level the global manufacturing community. In the past seven years, the network has grown from 16 to 201 industrial sites in more than 30 countries and 35 sectors, including the latest cohort of 13 new sites. This growing community of organizations is setting new standards for operational excellence, leveraging advanced technologies to drive growth, productivity, resilience and environmental sustainability. But what exactly is a Global Lighthouse and what has the network achieved? What is the Global Lighthouse Network? The Global Lighthouse Network is a community of operational facilities and value chains that harness digital technologies at scale to ac...

Multi-Modal Data

Multi-Task Federated Split Learning Across Multi-Modal Data with Privacy Preservation With the advancement of federated learning (FL), there is a growing demand for schemes that support multi-task learning on multi-modal data while ensuring robust privacy protection, especially in applications like intelligent connected vehicles. Traditional FL schemes often struggle with the complexities introduced by multi-modal data and diverse task requirements, such as increased communication overhead and computational burdens. In this paper, we propose a novel privacy-preserving scheme for multi-task federated split learning across multi-modal data (MTFSLaMM). Our approach leverages the principles of split learning to partition models between clients and servers, employing a modular design that reduces computational demands on resource-constrained clients. To ensure data privacy, we integrate differential privacy to protect intermediate data and employ homomorphic encryption to safeguard client m...

Satellite Communications

3D printed and circularly polarized 28 GHz patch antenna array for small satellite communications This paper presents the design, fabrication, and testing of a high-gain compact 2 × 2 circularly polarized patch antenna array using 3D printing technology for small satellite 5G communication at 28 GHz. The proposed antenna demonstrates high efficiency and a low profile, addressing the limitations in design flexibility associated with traditional PCB fabrication methods . The 2 × 2 array configuration, incorporating via fences, coaxial vertical feedlines, and a sequentially rotated phased feed network, enhances the antenna's bandwidth and axial ratio bandwidth while maintaining compactness, crucial for space-constrained satellite applications. Simulations optimized key antenna parameters, including reflection coefficient , gain, and axial ratio. Measurement results validated the simulations, showing an impedance bandwidth of 6.8 GHz and an axial ratio bandwidth of 3.1 GHz, with a ...