Krebs On Security reports:
At least 30,000 organizations across the United States — including a significant number of small businesses, towns, cities and local governments — have over the past few days been hacked by an unusually aggressive Chinese cyber espionage unit that’s focused on stealing email from victim organizations, multiple sources tell KrebsOnSecurity.
The espionage group is exploiting four newly-discovered flaws in Microsoft Exchange Server email software, and has seeded hundreds of thousands of victim organizations worldwide with tools that give the attackers total, remote control over affected systems.
Read the full article.
Sources who’ve briefed U.S. national security advisors say >30K U.S. organizations hacked by newly-found holes in Microsoft’s Exchange email products, and that 100s of thousands of victim organizations worldwide now have web-based backdoors installed. https://t.co/IdSboDUys9
— briankrebs (@briankrebs) March 5, 2021