Security News > 2021 > July > U.S., Allies Officially Accuse China of Microsoft Exchange Attacks
The United States and its allies have officially attributed the Microsoft Exchange server attacks disclosed in early March to hackers affiliated with the Chinese government.
In a statement, the White House accused China of using "Criminal contract hackers" to conduct cyber operations.
The White House has also attributed - "With a high degree of confidence" - the initial Microsoft Exchange attacks to hackers affiliated with China's Ministry of State Security.
Multiple threat groups have exploited the Microsoft Exchange vulnerabilities disclosed in early March.
The NSA, FBI and the DHS's Cybersecurity and Infrastructure Security Agency on Monday released an advisory detailing more than 50 tactics, techniques and procedures used by Chinese state-sponsored threat actors in their attacks.
Over the past years, the U.S. has charged several individuals over their alleged role in hacking operations conducted by the Chinese government, including attacks aimed at COVID-19 vaccine makers and the credit reporting agency Equifax.
News URL
Related news
- Microsoft 365 outage impacts Exchange Online, Teams, Sharepoint (source)
- Microsoft re-releases Exchange updates after fixing mail delivery (source)
- Microsoft Fixes AI, Cloud, and ERP Security Flaws; One Exploited in Active Attacks (source)
- Phishing-as-a-Service "Rockstar 2FA" Targets Microsoft 365 Users with AiTM Attacks (source)
- Microsoft enforces defenses preventing NTLM relay attacks (source)
- Hackers Use Microsoft MSC Files to Deploy Obfuscated Backdoor in Pakistan Attacks (source)
- Hackers use FastHTTP in new high-speed Microsoft 365 password attacks (source)
- Microsoft fixes under-attack privilege-escalation holes in Hyper-V (source)