Colonial Pipeline ransomware attack linked to Microsoft Exchange vulnerabilities [Updated]

Update May xiii, 2022 at 9:15 a.yard. ET: Microsoft has provided the following statement: "We have not seen whatever prove to back up the speculation that this ransomware assault is related to Exchange vulnerabilities. Such a tactic is not consistent with the known behaviors of these attackers."

Subsequently months of Microsoft Exchange drama thank you to the Microsoft Exchange Server hacks at the easily of multiple groups, including state-sponsored Chinese hacker group Hafnium, it seems the MS product is back at the center of controversy. This fourth dimension, information technology'south being linked to the Colonial Pipeline ransomware attacks and subsequent halting of Eastern U.S. oil supplies.

As spotted by The New York Times' cybersecurity reporter Nicole Perlroth, a forensic finding made during an evaluation of Colonial Pipeline noted numerous blind spots that could accept led to the security breach, with the "most probable culprit" beingness vulnerable Microsoft Commutation services.

Interesting forensic finding on Colonial Pipeline: They were STILL using a vulnerable version of Microsoft Exchange (the same systems exploited past Chinese hackers that was revealed in March), amidst other notable lapses. Per Coalition. pic.twitter.com/TvsEN8S3Ew

— Nicole Perlroth 🌻 (@nicoleperlroth) May 11, 2022

That is to say: Information technology's not guaranteed that Microsoft Substitution issues are to blame for Colonial Pipeline'southward current problems. Rather, an overall lack of technological sophistication is the root crusade of the pipeline operator's issues. Exchange may have played a role, though, if its vulnerabilities were indeed what left Colonial Pipeline open up for ransomware attacks.

There are many takeaways from the news, with 1 being that no major organization should rely on outdated versions of products that were compromised and used in massive regime-shaking hacks. What happens from here is anyone's estimate, but information technology stands to reason that every sort of organization and company, be information technology pipeline operators or otherwise, is going to be reassessing cybersecurity measures to avert condign the next national middle of attention.

Futurity plans for FFXIV

Mail service-launch roadmap for Terminal Fantasy Xiv: Endwalker revealed

The latest Letter from the Producer livestream has just aired, and information technology comes with a plethora of news for Final Fantasy XIV. This includes plans for updating all the main scenario quest dungeons, improving the graphics, implementing new sidequests, and much more.

Source: https://www.windowscentral.com/colonial-pipeline-ransomware-attack-linked-microsoft-exchange-vulnerabilities

Posted by: andradefacces38.blogspot.com

Share this post