Recent Attacks Targeting Microsoft Exchange
Thursday 11th March, 2021
Over the past week, many organisations across all market sectors have fallen victim to a recent cyber-attack targeting Microsoft Exchange Server Vulnerabilities. As a result of these vulnerabilities being exploited, adversaries can access Microsoft Exchange servers and allow the installation of additional tools to facilitate long-term access into victims’ environments. There has also been a report of multiple threat actors leveraging these zero-day vulnerabilities, meaning post-exploitation activity may vary depending on the purpose of the different threat actors.
In the news:
- “Exchange email hack: Hundreds of UK firms compromised“
- “University of Central Lancashire among three hit by cyber-attacks“
- “At Least 30,000 Organisations Newly Hacked Via Holes in Microsoft’s Email Software“
Our Security Operations Centre (SOC) Managed Detection and Response (MDR) Service utilises Palo Alto Networks Cortex XDR which delivers a consolidated approach to cyber security, leveraging existing investments in perimeter security, log collector platforms and more. It’s the industry’s only open and integrated AI-based continuous SOC platform that significantly improves security outcomes through automation and unprecedented accuracy.
To demonstrate the capabilities of our SOC MDR offering, please read the Palo Alto Networks security blog which explains how this recent attack can be hunted for within an organisation.
For further information on our SOC and our Managed Detection and Response service please contact the KHIPU team.
UK: +44 (0)345 272 0900
SA: +27 (0)41 393 7608