At Camel Secure we want you to be informed. That is why we present you this summary with the most important news in cybersecurity of the week
ATTACKS INCREASED BY EXPLOITING MICROSOFT EXCHANGE SERVER
The Microsoft Exchange server failure has been actively exploited in the last week affecting a number of organizations around the world.
Global vulnerabilities grew from 720 to 7,200. 17% of those affected are specific organizations in countries such as the United States, Germany, Russia, the United Kingdom and the Netherlands.
Another 23% of the attacks were directed at government and military sectors, followed by the manufacturing industry, banks and the financial sector, software providers and healthcare providers.
MICROSOFT LAUNCHES MITIGATION TOOL FOR EXCHANGE SERVER
Microsoft had an Exchange Server tool available to help SMEs block zero-day attacks with a single click. The purpose is to mitigate recently disclosed ProxyLogon vulnerabilities.
Microsoft Exchange's local mitigation tools are aimed at customers who don't have dedicated or even unfamiliar IT staff, Microsoft said.
Company spokespersons indicated that this responds to the need to create automated, simple, and easy-to-use solutions to meet the needs of customers using current and unsupported versions of Exchange Server.
MIMECAST SOURCE CODE STOLEN DURING SOLARWINDS INCIDENT
Mimecast, the cloud-based email manager for Microsoft Exchange and Microsoft 365, announced that its source code was stolen during cyberattacks linked to the SolarWinds security breach.
On its website, the company said that the hackers responsible for the attack used the Sunburst backdoor in compromised versions of SolarWinds Orion as an attack vector to download a number limited code, which would be insufficient to create and run "any aspect of the Mimecast service".
The company has no evidence to suggest that the hackers modified the code, but they did acknowledge that they could compromise some digital certificates issued by Mimecast.