Special Report: Microsoft Exchange Breach Is a 'Crazy Huge Hack' Reaching Into 30,000-Plus Organizations
Hack by Chinese APT group Hafnium could have seeded hundreds of thousands of unpatched orgs, White House warns of far-reaching consequences, Cybersecurity pros face 'Herculean' clean-up effort, more
At least 30,000 government and private industry organizations have been hacked by an unusually aggressive Chinese cyber-espionage unit that Microsoft has called Hafnium, sources told Krebs on Security. The Chinese group is focused on stealing email from victim organizations, exploiting four newly-discovered flaws in Microsoft Exchange Server email software. Microsoft issued patches for the flaw on March 2, but the concern over Hafnium’s reach centers on the large number of organizations that have not yet implemented the patches.