https://sputnikglobe.com/20221121/dozens-of-russian-firms-hacked-since-august-due-to-microsoft-email-vulnerability-1104478190.html
Dozens of Russian Firms Reportedly Hacked Since August Due to Microsoft Email Vulnerability
Dozens of Russian Firms Reportedly Hacked Since August Due to Microsoft Email Vulnerability
Sputnik International
MOSCOW (Sputnik) - Dozens of Russian small and medium-sized businesses have been hacked since August 2022 due to vulnerability of the Microsoft Exchange work... 21.11.2022, Sputnik International
2022-11-21T06:42+0000
2022-11-21T06:42+0000
2022-11-21T06:45+0000
russia
russia
hacker
hacker attack
hacking
cybersecurity
https://cdn1.img.sputnikglobe.com/img/07e5/01/15/1081836465_0:113:1200:788_1920x0_80_0_0_c2b0b4459291d233e663695691cfd9b6.jpg
The hackers attacked Russian firms using a special utility, which provided access to mailboxes of organizations' users and lists of contacts. The cybercriminals uploaded all email correspondence along with files attached to emails, experts told Sputnik.Companies found out that they had been hacked when their employees received emails from security4real@proton.me, mentioning payment for allegedly provided security audit services. In fact, it was a ransom — the amount that had to be paid so that hackers did not publish the stolen information. In some cases, the ransom reached $10,000, according to experts.Such cyberattacks once again show the importance of timely closing the gaps in the company's cybersecurity perimeter, Kheirkhabarov added.
russia
Sputnik International
feedback@sputniknews.com
+74956456601
MIA „Rossiya Segodnya“
2022
Sputnik International
feedback@sputniknews.com
+74956456601
MIA „Rossiya Segodnya“
News
en_EN
Sputnik International
feedback@sputniknews.com
+74956456601
MIA „Rossiya Segodnya“
https://cdn1.img.sputnikglobe.com/img/07e5/01/15/1081836465_0:0:1200:900_1920x0_80_0_0_714634c630628ab77f204102c9d4924e.jpgSputnik International
feedback@sputniknews.com
+74956456601
MIA „Rossiya Segodnya“
russia, hacker, hacker attack, hacking, cybersecurity
russia, hacker, hacker attack, hacking, cybersecurity
Dozens of Russian Firms Reportedly Hacked Since August Due to Microsoft Email Vulnerability
06:42 GMT 21.11.2022 (Updated: 06:45 GMT 21.11.2022) MOSCOW (Sputnik) - Dozens of Russian small and medium-sized businesses have been hacked since August 2022 due to vulnerability of the Microsoft Exchange work email server, with cybercriminals demanding a ransom for not publishing the stolen data, digital risk management company BI.Zone told Sputnik.
"Since August 2022, dozens of Russian organizations have been hacked through vulnerability of the Microsoft Exchange work email server. The victims have been mainly representatives of small and medium-sized businesses," the company said.
The hackers attacked Russian firms using a special utility, which provided access to mailboxes of organizations' users and lists of contacts. The
cybercriminals uploaded all email correspondence along with files attached to emails, experts told Sputnik.
Companies found out that they had been hacked when their employees received emails from security4real@proton.me, mentioning payment for allegedly provided security audit services. In fact, it was a ransom — the amount that had to be paid so that hackers did not publish the stolen information. In some cases, the ransom reached $10,000, according to experts.
"The victims of the hackers have been companies that failed to install the latest security updates on the Microsoft Exchange server in time, although this vulnerability and ways to eliminate it have been known since the fall of 2021," Teymur Kheirkhabarov, the head of the Cyberdefense Center at BI.Zone, told Sputnik.
Such cyberattacks once again show the importance of timely closing the gaps in the company's
cybersecurity perimeter, Kheirkhabarov added.