China wirft den USA vor, Microsoft Exchange-Schwachstellen zur Spionage bei Verteidigungsunternehmen genutzt zu haben

Die Spannungen im Cyberraum eskalieren: Peking beschuldigt Washington eines gezielten Angriffs auf seine Rüstungsindustrie.

Hintergrund sind angeblich ungepatchte Sicherheitslücken in Microsofts E-Mail-Server-Software – während die Tech-Branche lieber über Metaverse-Investitionen schwadroniert.

Ein klassischer Fall von 'Cyberwarfare mit Ansage', während die Börsen weiter auf KI-Hypes abfahren. Prioritäten, Leute.

China is using public hacking claims to pressure Taiwan

In a recent analysis, Wiz.io’s strategic threat intelligence director, Ben Read, observed that Beijing has more frequently used open accusations of hacking to pressure Taiwan and influence global talks on cybersecurity.

At the start of the year, the Chinese government claimed that groups based in Taiwan launched multiple attacks, despite the island’s autonomous governance.

In April, Beijing alleged that three National Security Agency staffers attempted to infiltrate the Harbin Asian Winter Games networks, aiming to harvest extensive personal data. While the U.S. government frequently names and charges alleged Chinese hackers, China has historically held back from publicly accusing American operatives.

SharePoint flaw targets over 90 U.S. agencies

In another development, the Center for Internet Security, a nonprofit that helps state, local, tribal, and territorial governments share cyber threat information, noted this week that a newly disclosed SharePoint vulnerability has drawn the attention of in excess of ninety state and local agencies.

It declined to identify the specific jurisdictions affected.

“None have resulted in confirmed security incidents,” said Randy Rose, the center’s vice president of security operations and intelligence, in an email statement.

This month saw a surge of attacks targeting SharePoint instances with known vulnerabilities, stirring alarm across various government levels.

Dutch cybersecurity firm Eye Security says about 400 organizations may have been hit by the SharePoint attacks. Federal agencies were among the targets, and new cases are surfacing every day.

The U.S. Department of Energy’s Fermi National Accelerator Laboratory was also among the entities flagged by the scans.

According to a lab spokesperson, the intruders attempted to compromise Fermilab’s SharePoint environment but were intercepted promptly, with no confidential or classified information exfiltrated. Initial coverage of the incident appeared via Bloomberg.

The Department of Energy maintains that only a handful of its systems were impacted by the SharePoint flaw.

Your crypto news deserves attention - KEY Difference Wire puts you on 250+ top sites