Search

Republican Governors Association Hit By Exchange Server Hack - Forbes

sutitong.blogspot.com

Earlier this year a dangerous vulnerability that affected on-premise Microsoft Exchange servers led to a number of high-profile cyberattacks. It has now come to light that state-sponsored hackers hit the Republican Governors Association during the first wave of attacks.

A breach notification filed with the Office of the Attorney General of New Hampshire last week states that the RGA was notified about the Exchange vulnerability on March 10 (Microsoft’s official warning came a week earlier). An investigation was launched immediately and it was determined that hackers had managed to breach the RGA email server at some point during the months of February and March.

The notice, which was submitted by attorneys Fox Rothchild LLP, mentions four unnamed New Hampshire residents whose data may have been impacted. Others in other jurisdictions would have been notified separately and not necessarily mentioned in the New Hampshire filing.

According to the document hackers appear to have accessed the individuals’ names, Social Security numbers and payment card information.

That claim is made just a few sentences after the assertion that “the forensic investigation was unable to identify what personal information, if any, was impacted as a result of this incident,” however. Indeed, as of now the RGA believes that “there is no evidence to suggest personal information was impacted as a result of this incident.”

That may indicate that the specific data listed in the notice is more of a best guess and reported “out of an abundance of caution.” Ultimately it may still be too early to say with certainty, as the investigation is still ongoing.

Thousands Of Attacks Linked To ProxyLogon Exploits

Multiple hacking groups launched offensives that took advantage of the ProxyLogon vulnerabilities. Microsoft has previously reported the total number of attacks exceeded 250,000 servers operated by more than 10,000 organizations.

Different crews had different objectives. It’s widely believed that state-sponsored hackers exploited ProxyLogon to gain access to sensitive data stored in their victims emails. The attack on the Republican Governors Association Exchange server was likely state-sponsored.

Other ProxyLogon attacks launched by criminal groups were motivated by the massive money-making opportunity. These attacks took one of two approaches: the dployment of cryptocurrency-mining malware or ransomware infection.

The RGA has been contacted for clarification and this post will be updated with any information that is provided.

Adblock test (Why?)



"exchange" - Google News
September 20, 2021 at 10:52PM
https://ift.tt/3AFSxMV

Republican Governors Association Hit By Exchange Server Hack - Forbes
"exchange" - Google News
https://ift.tt/3c55nbe
https://ift.tt/3b2gZKy
Exchange

Bagikan Berita Ini

0 Response to "Republican Governors Association Hit By Exchange Server Hack - Forbes"

Post a Comment

Powered by Blogger.