New Delhi: At least 32 Indian organisations have been attacked by hackers who exploited vulnerabilities<\/a> in unpatched Microsoft<\/a> business email servers, a new report warned on Monday, adding that the finance and banking institutions have been hit the most in the country. 至少32印度组织已经被黑客利用的漏洞攻击在应用补丁的微软商业电子邮件服务器,周一一份新报告警告称,金融和银行业机构受到的冲击最。 印度新德里:至少32组织已经被黑客利用攻击漏洞在应用补丁的微软商业电子邮件服务器,周一一份新报告警告称,金融和银行业机构受到的冲击最。
The finance and banking institutions (28 per cent) in India are followed by government\\military organisations (16 per cent), manufacturing (12.5 per cent),
insurance\\legal (9.5 per cent) and others (34 per cent), according to Check Point Research.
Overall, the hacking attempts on organisations using the services of those unpatched on-premises servers have multiplied by more than six times (or tripled) in the past 72 hours.
The country most attacked was the US (21 per cent of all exploit attempts), followed by The Netherlands (12 per cent) and Turkey (12 per cent), along with India.
Most targeted industry sector has been government\/military (27 per cent of all exploit attempts), followed by manufacturing (22 per cent), and then software vendors (9 per cent), the researchers noted.
\"A full race has started among hackers and security professionals. Global experts are using massive preventative efforts to combat hackers who are working day-in and day-out to produce an exploit that can successfully leverage the remote code execution vulnerabilities in Microsoft Exchange,\" said the researchers from the cyber security firm.
Amid reports indicating that about five different hacking groups are attacking the business email servers of Microsoft, the tech giant has also detected a new family of ransomware.
Named as 'DearCry,' the new ransomware is \"being used after an initial compromise of unpatched on-premises Exchange Servers,\" Microsoft said in a tweet last week. It uses the same four vulnerabilities that Microsoft linked to a new China-backed hacking group called \"Hafnium\".
On March 3, Microsoft released an emergency patch for its Exchange Server product, the most popular mail server worldwide. All incoming and outgoing emails, calendar invitations and virtually anything accessed within Outlook goes through the Exchange server.
Orange Tsai from DEVCORE, a security firm based in Taiwan, reported two vulnerabilities in January.
Unaware of the full magnitude of these findings, Microsoft was prompted to further investigate their Exchange server. The investigation uncovered five more critical vulnerabilities.
The vulnerabilities allow an attacker to read emails from an Exchange server without authentication or accessing an individual's email account.
Further vulnerability chaining enables attackers to completely take over the mail server itself.
\"If your organisation's Microsoft Exchange server is exposed to the internet<\/a>, and if it has not been updated with the latest patches, nor protected by a third party software, then you should assume the server is completely compromised,\" warned Lotem Finkelsteen, Manager of Threat Intelligence<\/a>, Check Point Software.
Right now, the purpose of the attack and what cybercriminals wanted within the network is still unknown.
<\/p><\/body>","next_sibling":[{"msid":81513855,"title":"SBI, ICICI, HDFC, Axis Bank, PNB and the Indian IT department targeted in phishing scam","entity_type":"ARTICLE","link":"\/news\/sbi-icici-hdfc-axis-bank-pnb-and-the-indian-it-department-targeted-in-phishing-scam\/81513855","category_name":null,"category_name_seo":"telecomnews"}],"related_content":[],"msid":81513920,"entity_type":"ARTICLE","title":"Hackers hit 32 Indian firms via Microsoft email servers","synopsis":"At least 32 Indian organisations have been attacked by hackers who exploited vulnerabilities in unpatched Microsoft business email servers, a new report warned on Monday, adding that the finance and banking institutions have been hit the most in the country.","titleseo":"telecomnews\/hackers-hit-32-indian-firms-via-microsoft-email-servers-ld","status":"ACTIVE","authors":[],"analytics":{"comments":0,"views":595,"shares":0,"engagementtimems":2478000},"Alttitle":{"minfo":""},"artag":"IANS","artdate":"2021-03-15 18:37:48","lastupd":"2021-03-15 18:38:34","breadcrumbTags":["Microsoft","data breach","security hackers","threat intelligence","vulnerabilities","cyber attack","Internet"],"secinfo":{"seolocation":"telecomnews\/hackers-hit-32-indian-firms-via-microsoft-email-servers-ld"}}" data-authors="[" "]" data-category-name="" data-category_id="" data-date="2021-03-15" data-index="article_1">
黑客袭击32印度公司通过微软电子邮件服务器
金融和银行业机构印度(28%),其次是政府\军事组织(16%)、制造业(12.5%)、
保险\法律(9.5%),其他(34%),根据检查研究。
总的来说,黑客攻击的组织使用这些应用补丁的本地服务器的服务乘以六倍多(或三倍)在过去72个小时。
大多数目标行业一直是政府/军队(27%的攻击),其次是制造业(22%),然后软件供应商(9%),研究人员指出。
“一个完整的竞赛已经开始在黑客和安全专家。全球专家使用大规模预防性打击黑客正在日日夜夜产生利用,能成功地利用远程代码执行漏洞在Microsoft Exchange,”研究人员说网络安全公司。
在报告表明对五种不同的黑客组织攻击微软的商业电子邮件服务器,科技巨头也发现ransomware的新家庭。
命名为“DearCry”,新ransomware”使用应用补丁的本地交换服务器的初始妥协之后,“微软上周在推特说。它使用相同的四个漏洞,微软与一个新的耿耿于怀黑客组织称为“铪”。
3月3日,微软发布了紧急补丁的Exchange服务器产品,全球最受欢迎的邮件服务器。所有传入和传出的电子邮件、日历邀请和几乎任何在前景通过Exchange服务器访问。
从DEVCORE橙色蔡,安全公司总部位于台湾,在一月份报告两个漏洞。
不知道这些发现,满级的微软是他们Exchange服务器提示进一步调查。调查发现了五个关键漏洞。
漏洞允许攻击者读取电子邮件从一个Exchange服务器没有身份验证和访问个人电子邮件帐户。
进一步的漏洞链接可以让攻击者完全接管邮件服务器本身。
“如果你的组织的暴露在Microsoft Exchange服务器互联网,如果它没有被更新为最新的补丁,也保护由第三方软件,那么您应该承担服务器完全妥协,“警告Lotem Finkelsteen,经理威胁情报,检查软件。
现在,攻击和网络罪犯的目的希望在网络中仍然是未知的。
读到
New Delhi: At least 32 Indian organisations have been attacked by hackers who exploited vulnerabilities<\/a> in unpatched Microsoft<\/a> business email servers, a new report warned on Monday, adding that the finance and banking institutions have been hit the most in the country.
The finance and banking institutions (28 per cent) in India are followed by government\\military organisations (16 per cent), manufacturing (12.5 per cent),
insurance\\legal (9.5 per cent) and others (34 per cent), according to Check Point Research.
Overall, the hacking attempts on organisations using the services of those unpatched on-premises servers have multiplied by more than six times (or tripled) in the past 72 hours.
The country most attacked was the US (21 per cent of all exploit attempts), followed by The Netherlands (12 per cent) and Turkey (12 per cent), along with India.
Most targeted industry sector has been government\/military (27 per cent of all exploit attempts), followed by manufacturing (22 per cent), and then software vendors (9 per cent), the researchers noted.
\"A full race has started among hackers and security professionals. Global experts are using massive preventative efforts to combat hackers who are working day-in and day-out to produce an exploit that can successfully leverage the remote code execution vulnerabilities in Microsoft Exchange,\" said the researchers from the cyber security firm.
Amid reports indicating that about five different hacking groups are attacking the business email servers of Microsoft, the tech giant has also detected a new family of ransomware.
Named as 'DearCry,' the new ransomware is \"being used after an initial compromise of unpatched on-premises Exchange Servers,\" Microsoft said in a tweet last week. It uses the same four vulnerabilities that Microsoft linked to a new China-backed hacking group called \"Hafnium\".
On March 3, Microsoft released an emergency patch for its Exchange Server product, the most popular mail server worldwide. All incoming and outgoing emails, calendar invitations and virtually anything accessed within Outlook goes through the Exchange server.
Orange Tsai from DEVCORE, a security firm based in Taiwan, reported two vulnerabilities in January.
Unaware of the full magnitude of these findings, Microsoft was prompted to further investigate their Exchange server. The investigation uncovered five more critical vulnerabilities.
The vulnerabilities allow an attacker to read emails from an Exchange server without authentication or accessing an individual's email account.
Further vulnerability chaining enables attackers to completely take over the mail server itself.
\"If your organisation's Microsoft Exchange server is exposed to the internet<\/a>, and if it has not been updated with the latest patches, nor protected by a third party software, then you should assume the server is completely compromised,\" warned Lotem Finkelsteen, Manager of Threat Intelligence<\/a>, Check Point Software.
Right now, the purpose of the attack and what cybercriminals wanted within the network is still unknown.
<\/p><\/body>","next_sibling":[{"msid":81513855,"title":"SBI, ICICI, HDFC, Axis Bank, PNB and the Indian IT department targeted in phishing scam","entity_type":"ARTICLE","link":"\/news\/sbi-icici-hdfc-axis-bank-pnb-and-the-indian-it-department-targeted-in-phishing-scam\/81513855","category_name":null,"category_name_seo":"telecomnews"}],"related_content":[],"msid":81513920,"entity_type":"ARTICLE","title":"Hackers hit 32 Indian firms via Microsoft email servers","synopsis":"At least 32 Indian organisations have been attacked by hackers who exploited vulnerabilities in unpatched Microsoft business email servers, a new report warned on Monday, adding that the finance and banking institutions have been hit the most in the country.","titleseo":"telecomnews\/hackers-hit-32-indian-firms-via-microsoft-email-servers-ld","status":"ACTIVE","authors":[],"analytics":{"comments":0,"views":595,"shares":0,"engagementtimems":2478000},"Alttitle":{"minfo":""},"artag":"IANS","artdate":"2021-03-15 18:37:48","lastupd":"2021-03-15 18:38:34","breadcrumbTags":["Microsoft","data breach","security hackers","threat intelligence","vulnerabilities","cyber attack","Internet"],"secinfo":{"seolocation":"telecomnews\/hackers-hit-32-indian-firms-via-microsoft-email-servers-ld"}}" data-news_link="//www.iser-br.com/news/hackers-hit-32-indian-firms-via-microsoft-email-servers-ld/81513920">
评论
现在评论 阅读评论(1)所有评论
找到这个评论进攻?
下面选择你的理由并单击submit按钮。这将提醒我们的版主采取行动