Microsoft Exchange Server attacks (2021)

GPTKB entity

Statements (36)
Predicate Object
gptkbp:instanceOf cybercrime
gptkbp:affects gptkb:government_agency
educational institutions
local governments
private companies
tens of thousands of organizations worldwide
gptkbp:alsoKnownAs Hafnium attacks
gptkbp:attributedTo gptkb:Hafnium
Chinese state-sponsored group
gptkbp:discoveredIn 2021
gptkbp:enemyOf data exfiltration
remote code execution
web shell installation
gptkbp:exploits zero-day vulnerabilities
https://www.w3.org/2000/01/rdf-schema#label Microsoft Exchange Server attacks (2021)
gptkbp:ledTo ransomware attacks
data breaches
gptkbp:notableFor prompting global patching effort
scale of exploitation
speed of attack spread
gptkbp:prompted gptkb:CISA_emergency_directive
emergency security patches
global incident response
gptkbp:publicDisclosure gptkb:Microsoft
March 2021
gptkbp:response gptkb:Microsoft
gptkb:CISA
gptkb:FBI
security researchers
gptkbp:target gptkb:Microsoft_Exchange_Server
gptkbp:vulnerableTo gptkb:CVE-2021-26855
CVE-2021-26857
CVE-2021-26858
CVE-2021-27065
gptkbp:bfsParent gptkb:Chinese_hackers
gptkbp:bfsLayer 7