Mytek Logo
MyTek Logo

HAFNIUM Attacks Target Most Microsoft Exchange Servers

by | Mar 24, 2021 | Alerts, MyTek Blog


Subscribe To The Blog

By subscribing to the blog, you will be notified when a new blog post is created on the site.

Most Microsoft Exchange Servers Targeted by HAFNIUM Attacks

Four flaws in Microsoft Exchange’s Server software was discovered too late and couldn’t prevent stolen emails. Even though this has happened, your business does not have to remain vulnerable to this attack, as we’ll go over how you can keep your business safe. But first, lets recap.

The Actions of HAFNIUM

On January 5th of 2021, “Orange Tsai,” otherwise known as DEVCORE, reported issues that were found in the Exchange Server. These same issues were then also reported on Jan. 27 by Dubex, and on Feb. 2, by Volexity. These reports nodded to what eventually proved to be the Chinese hacking group HAFNIUM. HAFNIUM has had hacking efforts targeted at email platforms used by several organizations, including defense contractors, institutions of higher education, infectious disease researchers, think tanks, law firms, and civil societies/non-government orgs.

Thousands of companies that use Microsoft Exchange have found themselves as part of the attack and were breached by HAFNIUM, and left open for additional attacks later.

It began with high-value targets, but has now shifted to taking over any encountered severs they come across. These attacks have left the cloud-hosted exchange servers untouched, but a lot of victims were using both on-site and cloud-hosted solutions together.

On March 2, a patch was released to protect against infiltration, but did not help those who has already been infected.

A Global Cybersecurity Crisis In The Making

Now, with the patch doing its work, it has become a race between hackers and the patch, Either a server can be infected first, or protected first.

At this point, so much has been lost to HAFNIUM

The patch can only do so much, and cannot do much of anything for already existing breaches. To save your business from a breach, you must get the patch as soon as possible, before your data has been infected. MyTek is here to help. If you are worried about the cyber attacks from HAFNIUM, please give us a call today so we can help assess and eliminate your risk. Call us today at 623-312-2440.


Tim - Team

Tim Tiller, LMSW

Tim Tiller, MSW brings a deep service background to his role at Mytek, having graduated from McDonald’s management training program, fresh out of high school, and working his way up through the ranks in the hospitality industry. He has led two prior companies – Multi-Systems Inc., an IT-focused organization providing technology to hospitality companies (where he was named President at age 36), and most recently, as Chief Operating Officer for Jewish Voice Ministries International.


Subscribe To This Author

By subscribing to the author, you will be notified when a new blog post is created by the author.


Top 5 Hardware Monitoring Software 

Did you know that almost 40% of servers had at least one outage in the last twelve months? Veeam reports that the most common reason for outrages is infrastructure failure which puts the current hardware monitoring practices under the scanner. Hardware failures are...

Types of Mobile Malware & How to Defend Against Them

Malware has a long history of undermining computer security and stealing critical data. With the rapid growth of mobile usage, we're now seeing a new breed of mobile malware infecting smartphones and tablets. The new-age mobile malware are more advanced, seamless, and...

How to Protect Your Data Privacy & Enhance IT Security

Every time you use a device, you enter, modify or access data. Some of your usages are routine and public but sometimes you perform tasks that are confidential in your personal life or business. Naturally, this type of data is private and it should be kept that way....

Mobile? Grab this Article!

QR Code

Blog Archive

Share This