China-based government hackers have exploited a bug in Microsoft Corp’s e-mail server software to target US organizations, the company said on Tuesday.
Microsoft said that a “highly skilled and sophisticated” state-sponsored group operating from China has been trying to steal information from a number of targets in the US, including universities, defense contractors, law firms and infectious-disease researchers.
Microsoft has released security upgrades to fix the vulnerabilities to its Exchange Server software, which is used for work e-mail and calendar services, mostly for larger organizations that have their own in-person e-mail servers, the company said.
Photo: Swayne B. Hall, AP
It does not affect personal e-mail accounts or Microsoft’s cloud-based services, it added.
The hacking group it calls Hafnium was able to trick Exchange servers into allowing it to gain access, Microsoft said.
The hackers then masqueraded as someone who should have access and created a way to control the server remotely so that they could steal data from an organization’s network, it added.
Microsoft said that the group is based in China, but operates from leased virtual private servers in the US, which helps it avoid detection.
The company declined to name any specific targets or say how many organizations were affected.
Reston, Virginia-based cybersecurity company Volexity Government Solutions LLC, which Microsoft credits for helping to detect the intrusions, said that its network security monitoring service began investigating a suspiciously large data transfer in late January.
“They’re just downloading e-mail, literally going to town,” Volexity president Steven Adair said, adding that the targets included defense contractors, think tanks, non-governmental organizations, and international aid and development organizations.
Adair said that he is concerned that the hackers might accelerate their activity in the coming days before organizations are able to install Microsoft’s security upgrades.
“As bad as it is now, I think it’s about to get a lot worse,” he said. “This gives them a limited amount of opportunity to go and exploit something. The patch isn’t going to fix that if they left their backdoor behind.”
PATENTS: MediaTek Inc said it would not comment on ongoing legal cases, but does not expect the legal action by Huawei to affect its business operations Smartphone integrated chips designer MediaTek Inc (聯發科) on Friday said that a lawsuit filed by Chinese smartphone brand Huawei Technologies Co (華為) over alleged patent infringements would have little impact on its operations. In an announcement posted on the Taiwan Stock Exchange, MediaTek said that it would not comment on an ongoing legal case. However, the company said that Huawei’s legal action would have little impact on its operations. MediaTek’s statement came after China-based PRIP Research said on Thursday that Huawei filed a lawsuit with a Chinese district court claiming that MediaTek infringed on its patents. The infringement mentioned in the lawsuit likely involved
Taipei is today suspending work, classes and its US$2.4 trillion stock market as Typhoon Gaemi approaches Taiwan with strong winds and heavy rain. The nation is not conducting securities, currency or fixed income trading, statements from its stock and currency exchanges said. Authorities had yesterday issued a warning that the storm could affect people on land and canceled some ship crossings and domestic flights. Taiwan Semiconductor Manufacturing Co (TSMC, 台積電) expects its local chipmaking fabs to maintain normal production, the company said in an e-mailed statement. The main chipmaker for Apple Inc and Nvidia Corp said it has activated routine typhoon alert
GROWTH: TSMC increased its projected revenue growth for this year to more than 25 percent, citing stronger-than-expected demand for AI devices and smartphones The Taiwan Institute of Economic Research (TIER, 台灣經濟研究院) yesterday raised its forecast for Taiwan’s GDP growth this year from 3.29 percent to 3.85 percent, as exports and private investment recovered faster than it predicted three months ago. The Taipei-based think tank also expects that Taiwan would see a 8.19 percent increase in exports this year, better than the 7.55 percent it projected in April, as US technology giants spent more money on artificial intelligence (AI) infrastructure and development. “There will be more AI servers going forward, but it remains to be seen if the momentum would extend to personal computers, smartphones and
Catastrophic computer outages caused by a software update from one company have once again exposed the dangers of global technological dependence on a handful of players, experts said on Friday. A flawed update sent out by the little-known security firm CrowdStrike Holdings Inc brought airlines, TV stations and myriad other aspects of daily life to a standstill. The outages affected companies or individuals that use CrowdStrike on the Microsoft Inc’s Windows platform. When they applied the update, the incompatible software crashed computers into a frozen state known as the “blue screen of death.” “Today CrowdStrike has become a household name, but not in