...
...
Next Story

Microsoft warns of new threat against unpatched networks from Chinese hackers

The company discovered suspected Chinese state-sponsored hackers were exploiting previously unknown vulnerabilities in Microsoft’s widely used Exchange business email software earlier in March.

Published on: Mar 12, 2021 08:15 PM IST
Bloomberg |
Prefer HTon Google
Advertisement

Microsoft Corp. has detected and blocked a “new family of ransomware” that was being used against servers that still hadn’t patched vulnerabilities after last week’s major security breach.

Microsoft has warned organizations to take urgent action to forestall damage. (Reuters)
Microsoft has warned organizations to take urgent action to forestall damage. (Reuters)

The updates it released on Friday are a temporary measure to defend against attacks, which were already occurring in many places, the company said.

The company discovered suspected Chinese state-sponsored hackers were exploiting previously unknown vulnerabilities in Microsoft’s widely used Exchange business email software earlier in March. Even as it issued a patch for those systems, hackers rushed to find companies that had yet to install Microsoft’s fix.

BitSight Technologies, a Boston-based cybersecurity firm, said that based on internet-wide scans it had done this week nearly one-third of vulnerable Microsoft Exchange customers have yet to patch their systems. Those customers would are now also vulnerable to the new ransomware attacks until those patches are installed.

Hackers are using the weaknesses introduced in the original attacks, including secret entry points inserted in victims’ systems, to gain access. Governments have been hounding businesses to install the patches -- the Australian government has issued at least three warnings in nine days -- and Microsoft has warned organizations to take urgent action to forestall damage.


 
SHARE THIS ARTICLE ON
Hindustantimes wants to start sending you push notifications. Click allow to subscribe