display
Redmond (AP) - Microsoft has closed security gaps in its Exchange Server e-mail software, which were allegedly used by Chinese hackers.
The software group called on customers on Wednesday night to quickly install the security updates provided.
Microsoft wrote in a blog entry that the hacker group, which Microsoft calls “Hafnium”, wanted to use the four vulnerabilities to tap information primarily in the United States.
The goals were, among other things, research on infectious diseases as well as universities, law firms and companies with defense contracts.
The attacks were targeted, and Microsoft had no evidence that private customers were also attacked.
According to Microsoft, the 2013, 2016 and 2019 Exchange server versions are affected. Exchange is used by many companies, authorities and educational institutions as an e-mail platform.
In the event of a successful attack via the vulnerabilities, it is possible to access data from the e-mail system.
Microsoft was made aware of the security gaps by IT security researchers.
display
According to Microsoft, the “Hafnium” group operates from China - but used the infrastructure in the USA for the attacks.
© dpa-infocom, dpa: 210303-99-665763 / 4
Blog entry from Microsoft
Technical details on security vulnerabilities