Thousands of Microsoft Exchange servers still compromised after patches

Microsoft has previously warned that patching won’t evict a hacker who has already compromised a server. — Reuters

Thousands of Microsoft Exchange servers are still compromised by hackers even after applying fixes, a top US cybersecurity official said on March 22, citing data from cybersecurity companies.

Brandon Wales, acting director of the Cybersecurity and Infrastructure Security Agency, said owners of the email servers that were compromised before Microsoft Corp issued a patch nearly three weeks ago must take additional measures to remove the hackers from their networks.

Microsoft has previously warned that patching won’t evict a hacker who has already compromised a server.

“We remain committed to supporting our customers against these attacks, to innovating on our security approach, and to partnering closely with governments and the security industry to help keep our customers and communities secure,” a Microsoft spokesperson said on Monday.

The servers that remain compromised could be used as a launching pad for criminal hackers to initiate ransomware attacks on computer networks, in which files are encrypted and held ransom in exchange for a payment. Reports of ransomware attacks inside compromised networks have so far been sparse.

Last week, Microsoft released a tool that allows owners of on-premise Exchange servers to patch the security flaws with one click. But hackers may have already breached those servers and can sit inside computer networks even after the fix is applied. Microsoft has said the attack started with a Chinese government-backed hacking group that was accused of exploiting previously unknown vulnerabilities in Microsoft’s widely used Exchange business email software.

About 45% of the vulnerable systems had been patched over the past week, a National Security Council spokesperson said. There are now fewer than 10,000 vulnerable systems remaining in the US, down from at least 120,000 at the start. – Bloomberg

Article type: metered
User Type: anonymous web
User Status:
Campaign ID: 46
Cxense type: free
User access status: 3
Join our Telegram channel to get our Evening Alerts and breaking news highlights

Next In Tech News

Facebook is working on new practical features
Share buybacks remain an option for SoftBank, says CEO Son
UK children can stop nude photos being shared online with new tool
Restaurants urge customers to bypass food delivery platforms charging exorbitant fees
MCMC: Telcos told to improve coverage after student hurt in search for better reception
‘Lifeline’ tech helps poor rural women get through India’s Covid-19 crisis
This real race car steering wheel can also be used with virtual motorsport simulators
Tinder adds new features as love seekers stay virtual
The car that transforms into an aircraft in just two minutes
Which country’s video game fans talk most about gaming on Twitter?

Stories You'll Enjoy