The latest Microsoft Exchange hack that was announced earlier this month is likely to go down as one of the top cybercrime events of the year, leaving hundreds of thousands of businesses across the globe scrambling to apply patches to their on-premise mail servers.
The state-sponsored Chinese group Hafnium has been identified as the primary actor responsible for the hack, using multiple zero-day exploits, with attacks starting as far back as early January with a rise in activity since February 26th.
At its core, a zero-day attack is an unknown flaw/vulnerability that is exploited by bad actors before the developers discover the flaw or have an opportunity to create a patch to fix it—hence the name “zero-day”.
Read More