Microsoft recently reported that suspected Chinese nation-state actors have exploited a flaw in Exchange that has given them access to data and/or email accounts. According to estimates 30,000 or so customers and 18,000 servers were affected. This flaw impacts a broad range of customers, from small businesses to local and state governments and some military contractors. The hackers were able to steal emails and install malware to continue surveillance of their targets. Patches are available and should be installed immediately. See also our last story on France EBA below.
