US Govt Concern Over A Hack On Microsoft’s Exchange Email Software

Cybersecurity expert provides an insight on the news that the US govt has expressed growing concern over a hack on Microsoft’s Exchange email software that the tech company has blamed on China.

Subscribe
Notify of
guest
1 Expert Comment
Newest
Oldest Most Voted
Inline Feedbacks
View all comments
Chris Hallenbeck
Chris Hallenbeck , CISO, Americas
InfoSec Expert
March 15, 2021 10:39 am

<p>It has long been a tactic of nation-state intruders to monitor for signs of being discovered. This often included targeting the mailboxes of security staff. It’s only natural that attackers would want to tap into the broader wealth of information found on a mail server, and also use it as a beachhead into the organization’s network.</p> <p> </p> <p>Beyond the basics of deploying Exchange, most organizations likely lack the skills to perform detailed forensic examinations to determine what might have been stolen. This puts organizations in the unenviable position of assuming everything was taken.  We can expect a flurry of breach notifications from this recent intrusion campaign.</p> <p> </p> <p>How governments will respond in an effort to rebuke the nation-state sponsors and reign in these massive hacking campaigns has yet to be seen, but it is clear that they must send a definitive message.   </p> <p> </p> <p>As for network defenders, this is another example where even if you have extensive piles of security tools you are likely to experience some breaches. It is important to proactively instrument your networks to gather data and position your security teams so they can respond to the inevitable.</p>

Last edited 1 year ago by Chris Hallenbeck
1
0
Would love your thoughts, please comment.x
()
x