Microsoft — Data Breach

criticalAnti-PrivacyDec 13, 2020 → Mar 2, 2021Data Breach

Executive Summary

Microsoft disclosed that a Chinese state-sponsored group known as Hafnium exploited four zero-day vulnerabilities in on-premises Exchange Server, compromising over 30,000 organizations in the US alone. Attackers gained access to email accounts and installed web shell malware. The US, UK, EU, and NATO jointly attributed the attack to China's Ministry of State Security.

Post LinkedIn Reddit Email

data-breach surveillance

Sources

Microsoft Security Blog: Hafnium targeting Exchange Servers with 0-day exploits
Wikipedia: 2021 Microsoft Exchange Server data breach