Microsoft Exchange Server attacks (2021)
GPTKB entity
Statements (36)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
cybercrime
|
| gptkbp:affects |
gptkb:government_agency
educational institutions local governments private companies tens of thousands of organizations worldwide |
| gptkbp:alsoKnownAs |
Hafnium attacks
|
| gptkbp:attributedTo |
gptkb:Hafnium
Chinese state-sponsored group |
| gptkbp:discoveredIn |
2021
|
| gptkbp:enemyOf |
data exfiltration
remote code execution web shell installation |
| gptkbp:exploits |
zero-day vulnerabilities
|
| https://www.w3.org/2000/01/rdf-schema#label |
Microsoft Exchange Server attacks (2021)
|
| gptkbp:ledTo |
ransomware attacks
data breaches |
| gptkbp:notableFor |
prompting global patching effort
scale of exploitation speed of attack spread |
| gptkbp:prompted |
gptkb:CISA_emergency_directive
emergency security patches global incident response |
| gptkbp:publicDisclosure |
gptkb:Microsoft
March 2021 |
| gptkbp:response |
gptkb:Microsoft
gptkb:CISA gptkb:FBI security researchers |
| gptkbp:target |
gptkb:Microsoft_Exchange_Server
|
| gptkbp:vulnerableTo |
gptkb:CVE-2021-26855
CVE-2021-26857 CVE-2021-26858 CVE-2021-27065 |
| gptkbp:bfsParent |
gptkb:Chinese_hackers
|
| gptkbp:bfsLayer |
7
|