viralamo

Menu
  • Technology
  • Science
  • Money
  • Culturs
  • Trending
  • Video

Subscribe To Our Website To Receive The Last Stories

Join Us Now For Free
Home
Technology
Hackers steal Mimecast certificate used to encrypt customers’ M365 traffic
Technology

Hackers steal Mimecast certificate used to encrypt customers’ M365 traffic

13/01/2021

Hackers steal Mimecast certificate used to encrypt customers’ M365 traffic

Getty Images

Email management provider Mimecast said that hackers have compromised a digital certificate it issued and used it to target select customers who use it to encrypt data they sent and received through the company’s cloud-based service.

In a post published on Tuesday, the company said that the certificate was used by about 10 percent of its customer base, which—according to the company—numbers about 36,100. The “sophisticated threat actor” then likely used the certificate to target “a low single digit number” of customers using the certificate to encrypt Microsoft 365 data. Mimecast said it learned of the compromise from Microsoft.

Certificate compromises allow hackers to read and modify encrypted data as it travels over the Internet. For that to happen, a hacker must first gain the ability to monitor the connection going into and out of a target’s network. Typically, certificate compromises require access to highly fortified storage devices that store private encryption keys. That access usually requires deep-level hacking or insider access.

The Mimecast post didn’t describe what type of certificate was compromised, and a company spokesman declined to elaborate. This post, however, discusses how customers can use a certificate provided by Mimecast to connect their Microsoft 365 servers to the company’s service. Mimecast provides seven different certificates based on the geographic region of the customer.

Advertisement

Delete! Delete!

Mimecast is directing customers who use the compromised certificate to immediately delete their existing Microsoft 365 connection with the company and re-establish a new connection using a replacement certificate. The move won’t affect inbound or outbound mail flow or security scanning, Tuesday’s post said.

The disclosure comes a month after the discovery of a major supply chain attack that infected roughly 18,000 customers of Austin, Texas-based SolarWinds with a backdoor that gave access to their networks. In some cases—including one involving the US Department of Justice—the hackers used the backdoor to take control of victims’ Office 365 systems and read email they stored. Microsoft, itself a victim in the hack, has played a key role in investigating it. The type of backdoor pushed to SolarWinds customers would also prove valuable in compromising a certificate.

It’s way too early to say that the Mimecast event is connected to the SolarWinds hack campaign, but there’s no denying that some of the circumstances match. What’s more, Reuters reported that three unnamed cybersecurity investigators said they suspect the Mimecast certificate compromise was carried out by the same hackers behind the SolarWinds campaign.

Source link

Share
Tweet
Pinterest
Linkedin
Stumble
Google+
Email
Prev Article
Next Article

Related Articles

Intel and partners are using computer vision to help save Antarctica’s penguins from extinction
Antarctica’s emperor penguin population has suffered such severe climate-related breeding …

Intel and partners are using computer vision to help save Antarctica’s penguins from extinction

2020 will be a big year for online childcare — here are 7 startups to watch
TechCrunch ist Teil von Verizon Media. Klicken Sie auf ‘Ich …

Box is now letting all staff work from home to reduce coronavirus risk

Leave a Reply Cancel reply

Find us on Facebook

Related Posts

  • TechCrunch’s Favorite Things of 2019
    Unicorn fever as One Medical’s IPO pops …
    02/02/2020
  • PlayStation 5 gets Godfall looter-slasher from Gearbox Publishing
    At CES, companies slowly start to realize …
    11/01/2020
  • Ripple raises $200 million to improve global payments – TechCrunch
    Ripple raises $200 million to improve global …
    20/12/2019
  • You can’t eliminate bias from machine learning, but you can pick your bias
    You can’t eliminate bias from machine learning, …
    14/11/2020
  • Mojo Vision teams up with optics leader Menicon to develop AR contact lenses
    Mojo Vision teams up with optics leader …
    09/12/2020

Popular Posts

  • DDoSers are abusing Microsoft RDP to make attacks more powerful
    DDoSers are abusing Microsoft RDP to make …
    23/01/2021 0
  • Top 10 Amazing Actors Who Are Always …
    25/12/2020 0
  • 13 acquisitions highlight Big Tech’s AI talent grab in 2020
    13 acquisitions highlight Big Tech’s AI talent …
    25/12/2020 0
  • The Last of Us Part II takes Game of the Year at The Game Awards
    The DeanBeat: My favorite games of 2020
    26/12/2020 0
  • How to build tech products for a diverse user base
    How to build tech products for a …
    26/12/2020 0

viralamo

Pages

  • Contact Us
  • Privacy Policy
Copyright © 2021 viralamo
Theme by MyThemeShop.com

Ad Blocker Detected

Our website is made possible by displaying online advertisements to our visitors. Please consider supporting us by disabling your ad blocker.

Refresh
We use cookies to ensure that we give you the best experience on our website. If you continue to use this site we will assume that you are happy with it.I AgreePrivacy policy