NSA warns state-sponsored hackers are exploiting Microsoft Exchange Server vulnerability

Both the NSA and a cybersecurity firm have reminded the tech world of the existence of a remote code execution vulnerability in Microsoft Exchange Server. Although Microsoft issued a patch for CVE-2020-0688 last month, numerous state-sponsors hacking groups have been spotted exploiting the vulnerability. There was an uptick in exploitation after a technical report of the details of the vulnerability were published by a security researcher. Towards the end of February, Simon Zuckerbraun from the Zero Day Initiative published a detailed writeup about the problem with Exchange Server, seemingly handing valuable information to hackers-in-waiting. Microsoft has indicated that the patch… [Continue Reading]