Tool created to aid cleanup from Microsoft hack in broad use


A tool designed to help businesses protect themselves from further compromises after a global hack of Microsoft email server software has been downloaded more than 25,000 times since it was released last week, according to the White House’s National Security Council. As a result, the number of vulnerable systems has fallen by 45%. — AP

WASHINGTON: A tool designed to help businesses protect themselves from further compromises after a global hack of Microsoft email server software has been downloaded more than 25,000 times since it was released last week, the White House’s National Security Council said on March 22.

As a result, the number of vulnerable systems has fallen by 45%, according to an NSC spokesperson.

The one-click Microsoft tool was created to protect against cyberattacks and to scan systems for compromises and fix them. It was developed after a massive hack affecting an estimated tens of thousands of users of servers running Microsoft’s Exchange email program.

The breach was discovered in early January and was attributed to Chinese cyber spies targeting US policy think tanks. Then in late February, five days before Microsoft Corp issued a patch on March 2, there was an explosion of infiltrations by other intruders, piggybacking on the initial breach.

The White House earlier this month described the hack as an “active threat” that was being addressed by senior national security officials. The administration’s response is being led by deputy national security adviser Anne Neuberger, who convened government officials and private sector experts to brainstorm solutions, particularly given that smaller businesses often lack resources to counter cyberattacks and to clean up after hacks.

Since the release of the tool, the number of vulnerable systems has fallen to fewer than 10,000 from at least 120,000 at the peak.

While Microsoft has taken considerable heat for being the provider of software that elite hackers have exploited, Charles Carmakal, senior vice president and chief technical officer of prominent cybersecurity firm FireEye, said Microsoft, based in Redmond, Washington, deserves credit for working hard to help people who run its software defend themselves.

He cited, especially, the downloadable turnkey script that people can use to apply patches and see if their systems have been compromised.

“The level of effort that they put into this to help companies defend themselves is terrific,” he said. “It’s a tough situation that organisations are in with the vulnerability in general.” – AP

Article type: metered
User Type: anonymous web
User Status:
Campaign ID: 1
Cxense type: free
User access status: 3
Join our Telegram channel to get our Evening Alerts and breaking news highlights
   

Next In Tech News

Sberbank's online banking operations compatible with Russian-made system
Exclusive-Russian hackers are linked to new Brexit leak website, Google says
Berlusconi-backed MFE sticks to targets despite tough start to year
Russia's VK launches RuStore for apps after exit of Western alternatives
Russia will start a pilot project for 'digital' rouble from April - cbank
Norwegian software venture targets rising cyber attack risks
China’s digital yuan goes to school with student card that gives parents control over spending
Police officer to be suspended for allegedly taking upskirt video of woman in Hong Kong’s financial district
Twitter to hold annual meeting amid Musk uncertainty
Apple spent millions, but it couldn’t pull these San Jose residents out of homelessness

Others Also Read