State-Sponsored Hackers Likely Targeted 10 Organizations With M.S. Exchange 0-Day Exploits

[{"selector":"#anim-7663b6cf-63f7-450c-8102-eadff4335c6c [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(10.40740477220776%, 0, 0)","translate3d(0%, 0, 0)"]},"delay":0,"duration":4000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}] By James Scout/ Oct 2, 2022 Learn more

M.S. Exchange Hacked

[{"selector":"#anim-6fa94d48-f4bc-4cce-8001-7ea594f76b3f [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(6.797026816313584%, 0, 0)","translate3d(0%, 0, 0)"]},"delay":0,"duration":4000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}] Microsoft revealed on Friday that a single activity group in August 2022 breached Exchange servers by chaining the two recently disclosed zero-day flaws in a constrained set of attacks targeted at fewer than ten global organizations.

M.S. Exchange Hacked

[{"selector":"#anim-badbd089-4e33-420e-9ec3-72f679c2f05e [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(6.797026816313584%, 0, 0)","translate3d(0%, 0, 0)"]},"delay":0,"duration":4000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}] According to a report released on Friday by the Microsoft Threat Intelligence Center (MSTIC), "these attacks installed the Chopper web shell to facilitate hands-on-keyboard access, which the attackers used to perform Active Directory reconnaissance and data exfiltration."

M.S. Exchange Hacked

[{"selector":"#anim-28b1c238-9ec9-4bcd-8631-fbf54f2e6d24 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(6.797026816313584%, 0, 0)","translate3d(0%, 0, 0)"]},"delay":0,"duration":4000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}] Microsoft further stated that due to the "highly privileged access Exchange systems confer upon an attacker," the weaponization of the vulnerabilities is anticipated to increase over the next few days as malicious actors incorporate the exploits into their toolkits,

M.S. Exchange Hacked

[{"selector":"#anim-600b3b23-cb94-4f47-a5dc-1e752ecb2c19 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(6.797026816313584%, 0, 0)","translate3d(0%, 0, 0)"]},"delay":0,"duration":4000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}] – Microsoft Exchange Server Server-Side Request Forgery Vulnerability (CVE-2022-41040) – Microsoft Exchange Server Remote Code Execution Vulnerability (CVE-2022-41082)

More Stories

[{"selector":"#anim-1bb60db0-ee95-446f-b9e4-670b5554c88c","keyframes":[{"transform":"scale(1)","offset":0},{"transform":"scale(1.15)","offset":0.33},{"transform":"scale(0.985)","offset":0.66},{"transform":"scale(1)","offset":1}],"delay":0,"duration":1200,"easing":"ease-in-out","fill":"both","iterations":1}] [{"selector":"#anim-a2b2fedb-b8aa-494d-85c8-8b656b5ec5b8","keyframes":{"transform":["translate3d(60.65341%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-ae366066-6e6d-4853-a0af-94fae0a512ee","keyframes":{"opacity":[0,1]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-1e8f5cca-ba01-4caa-97de-4cffebfbcea6","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] [{"selector":"#anim-6da6bc2d-322f-4918-8089-32c752177a8a","keyframes":{"transform":["translate3d(-70.82601%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-ab89bb94-36ad-4a61-84e6-7373f6e3ca7c","keyframes":{"opacity":[0,1]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-426e9210-ddde-4eab-a118-2b279ea7eb93","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] [{"selector":"#anim-c01ca5d1-43f2-418a-ab40-718508183cf4","keyframes":{"transform":["translate3d(86.08871%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-68c3341d-c912-4bfb-8735-22f1ce87e360","keyframes":{"opacity":[0,1]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-e8a4f9de-88ff-4b96-b844-8ebfc549bff8","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":200,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] [{"selector":"#anim-ccf7c740-7efa-4800-a427-e243d761a9fa","keyframes":{"opacity":[0,1]},"delay":1000,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-050c769d-7e52-4258-aba6-1dc74d1e9e38","keyframes":{"opacity":[0,1]},"delay":1000,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-5073c619-e9f7-484e-8fd2-a5fdf287e484","keyframes":{"opacity":[0,1]},"delay":1000,"duration":1200,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-9d2abf25-b135-4bdc-a6a1-a3aea94b0cfa","keyframes":{"opacity":[0,1]},"delay":1000,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-950f4644-ce2b-4fa8-9b77-d93bf6c77097","keyframes":{"opacity":[0,1]},"delay":1000,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-7d56cbe9-ef98-40ea-a40c-8fe485c7640f","keyframes":{"opacity":[0,1]},"delay":1000,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] Own an Outdated Echo Dot? For Free, Eero Wants to Transform it Into a Mesh Wi-Fi Extender The Halo Rise Sleep Sensing Device and Sunrise Alarm Clock are Now Available on Amazon Second-Generation Wearable Technology (AR) Glasses From Magic Leap are Currently Available on The Market