Microsoft Exchange under attack as LockFile ransomware targets servers

By Binu MathewAugust 24, 2021

Security researchers claim to have discovered a new ransomware family called LockFile that seems to the same that was used earlier to attack Microsoft Exchange servers in the US and Asia. According to Symantec, previously unseen ransomware has hit at least 10 companies in the ongoing campaign. These targets are across industries.

The LockFile ransomware was first observed on the network of a US financial organisation on July 20, 2021, with its latest activity seen as recently as August 20.

How the new attack works

As per Symantec, there are signs that the attackers gain access to victims’ networks via Microsoft Exchange Servers, and then use the incompletely patched PetitPotam vulnerability to gain access to the domain controller, and then spread across the network.

Microsoft Exchange under attack as LockFile ransomware targets servers

More in IT

Ola CEO Bhavish Aggarwal to Microsoft’s LinkedIn: … Luckily my team takes screenshots

ChatGPT users are getting GPT-4’o’ free: What are new features, availability and more

Google I/O 2024: Gemini Nano AI model brings “Help Me Write” feature to Chrome

Must Read Articles

Poor Show

Zomato & Swiggy

Regulating Big Tech

Interview with Preetham Uthaiah, EVP – Marketing & Strategy Saankhya Labs

DoT launches portal for centralised RoW approvals

NCAER Working Paper

Real-Time-Bidding of your Data

DoT to get 33 pc stake of Vi for Rs 16,133 cr interest dues

National Data Governance Framework

BSNL 4G

Archives

You may also like

More in IT

Must Read Articles

Archives