Microsoft accuses China of carrying out hacks on its Exchange email product
Business Insider
3/3/2021
© Provided by Business Insider
Microsoft warned that its email product Exchange had been compromised. SOPA Imagines/Getty Images
- Microsoft said that its Exchange email product had been compromised by Chinese hackers.
- The company said it believes the group, which it named "Hafnium," was supported by the Chinese state.
- Microsoft also released security updates to combat the hacks.
- Visit the Business section of Insider for more stories.
Microsoft announced Tuesday that its Exchange email product had been hacked, and that it believes China is behind the attack.
Tom Burt, Microsoft's corporate vice president of customer security and trust, wrote in a blog post that the company had identified a "state-sponsored threat actor" it referred to as "Hafnium."
Hafnium, he said, typically uses virtual servers located in the US to infiltrate vulnerable institutions, including infectious-disease researchers, law firms, higher education institutions, and NGOs.
According to Burt, the hacking group took advantage of several security vulnerabilities within the email client to steal data and plant malware, and more alarmingly, to compromise servers running Exchange.
Video: At least 30,000 organizations newly hacked via Microsoft email flaw (CNBC)
-
How you can save $1 million for retirement
USA TODAY -
How much the most populous states pay mail carriers
GOBankingRates -
Creepy ways your company can spy on you while you work from home
Veuer -
Major companies suspend social media advertising over online hate speech
CBS News -
Women and retirement planning
Money Talks News -
This bookshop survived earthquakes and recessions. But not this
CNN Money -
Jim Cramer on Chesapeake Energy filing for bankruptcy
CNBC -
Should you save for retirement or pay down debt?
Money Talks News -
Ford just unveiled its 2021 tech-savvy pickup — here's what's new
CNBC -
Amazon looking to get into the self-driving car business buys startup for $1B
Veuer -
Economic outlook as more Americans file for unemployment
CBS News -
5 items you can sell for additional income
GOBankingRates -
5 practical reasons to put purchases on credit
GOBankingRates -
How to prepare for the next recession
Money Talks News -
Disney World workers petition to delay reopening of theme park
CNBC -
500 Delta staff have tested positive for COVID-19 and 10 have died
Veuer
-
How you can save $1 million for retirement How you can save a million bucks for retirement
USA TODAY
-
How much the most populous states pay mail carriers Americans rely on mail carriers to send and receive their mail. Have you ever wondered how much these essential workers make?
GOBankingRates
-
Creepy ways your company can spy on you while you work from home Just because you’re working from home doesn’t mean your boss can’t keep tabs on your every move. Veuer’s Sean Dowling has more.
Veuer
Once Hafnium made its way inside company servers, it could create a "web shell" to control servers remotely and steal data from company networks.
In addition to the warning, Microsoft also released several security updates designed to combat the hacks, but noted that "even though we've worked quickly to deploy an update for the Hafnium exploits, we know that many nation-state actors and criminal groups will move quickly to take advantage of any unpatched systems."
Burt also noted that Exchange server is "primarily used by business customers" and said that there was "no evidence" that Hafnium was targeting individual consumers or that any other Microsoft products were impacted. He also said that the attack was not believed to be related to prior SolarWinds hacks.
Chinese Foreign Ministry spokesman Wang Wenbin responded to Microsoft's accusations in a Wednesday press briefing, saying there was not enough evidence to draw a conclusion on the Exchange hack's origins, according to Bloomberg.
This is the eighth time in the last 12 months that Microsoft has publicly reported state-sponsored hacks.
More From Business Insider
-
Charli and Dixie D'Amelio made a mattress with Simmons, the latest brand turning to TikTok stars to target a younger audience
Business Insider
-
State Department to issue 'Level 4: Do Not Travel' for 'approximately 80%' of countries worldwide due to coronavirus spread
-
ORG CHARTS: View the most important people and power structures at companies like Netflix, Google and Goldman Sachs
Business Insider
![image beacon](https://web.vortex.data.msn.com/collect/v1/t.gif?name=%27Ms.Webi.PageView%27&ver=%272.1%27&appId=%27JS%3AMSN%27&ext-app-env=%27prod%27&ext-javascript-libver=%274.0.0-beta-10%27&ext-user-localId=%27t%3A2A7094A2845960DD35A184BC854B61C1%27&*baseType=%27Ms.Content.PageView%27&*isJs=False&*title=%27%27&*isLoggedIn=False&*isManual=True&*serverImpressionGuid=%27f88e2725-85c4-47db-accb-c0b2fd29d9ee%27&-ver=%271.0%27&-impressionGuid=%27f88e2725-85c4-47db-accb-c0b2fd29d9ee%27&-pageName=%27articlevnext%27&-uri=%27https%253A%252F%252Fwww.msn.com%252Fen-us%252Fmoney%252Fother%252Fmicrosoft-accuses-china-of-carrying-out-hacks-on-its-exchange-email-product%252Far-BB1ebBto%27&-referrerUri=%27%27&-pageTags=%27{"pg.t"%3A"article"%2C"pg.p"%3A"prime"%2C"pg.c"%3A""%2C"ex"%3A""%2C"rid"%3A"f88e272585c447dbaccbc0b2fd29d9ee"%2C"clid"%3A"2A7094A2845960DD35A184BC854B61C1"%2C"clidType"%3A"muid"%2C"di"%3A"7290"%2C"partner"%3A"Business%2BInsider"%2C"publcat"%3A"Business%2BInsider%2BInc"%2C"cvs"%3A"Browser"%2C"subcvs"%3A"finance"%2C"entityId"%3A"BB1ebBto"%2C"entitySrc"%3A"ar"%2C"provid"%3A"AA28VO"%2C"dpt"%3A"other"%2C"sdpt"%3A""%2C"ar"%3A"0"%2C"dgk"%3A"downlevel.pc"%2C"imd"%3A"0"%2C"parentId"%3A""%2C"pgIdx"%3A""%2C"pgTot"%3A""%2C"anoncknm"%3A""%2C"afd"%3A""%2C"issso"%3A"0"%2C"aadState"%3A"0"}%27&-behavior=0&-market=%27en-us%27){kind=small}