Multiple nation-state groups are hacking Microsoft Exchange servers

Multiple government-backed hacking groups are exploiting a recently-patched vulnerability in Microsoft Exchange email servers.

The exploitation attempts were first spotted by UK cyber-security firm Volexity on Friday and confirmed today to ZDNet by a source in the DOD.

Volexity did not share the names of the hacking groups exploiting this Exchange vulnerability. Volexity did not return a request for comment for additional details.

The DOD source described the hacking groups as “all the big players,” also declining to name groups or countries.

The Microsoft Exchange vulnerability

These state-sponsored hacking groups are exploiting a vulnerability in Microsoft Exchange email servers that Microsoft patched last month, in the February 2020 Patch Tuesday.

The vulnerability is tracked under the identifier of CVE-2020-0688. Below is a summary of the vulnerability’s technical details:

  • During installation, Microsoft Exchange servers fail to create a unique cryptographic key for the Exchange control panel.
  • This means that all
Read More

Goldman Sachs considers building cloud service to sell to other finance firms

US bank Goldman Sachs is considering converting its cloud investments into a non-financial services product line by creating a cloud-based core technology platform that could be sold as a service to other financial services companies.

The bank is considering emulating Amazon Web Services (AWS) in how it sells access to its cloud platform and cloud-based tools, but with a platform focused on the financial services sector.

According to Yahoo Finance, an internal memo from Goldman Sachs’ co-CIO Marco Argenti – a former AWS employee – the bank could take lessons on how to monetise its cloud expertise.

“In the same way AWS was conceived, both as an internal product to streamline’s operations and as an external product to offer the same benefits to any company facing similar issues, our core technology services can be externalised to other financial institutions,” Argenti wrote in the memo seen by Yahoo Finance.

Read More

Samsung chip plant in Korea suffers fire

Image: Samsung

A fire broke out in one of Samsung’s chip plants in South Korea late Sunday that was extinguished before dawn on Monday.

The fire started at 11:18 pm on Sunday at the tech giant’s plant in Hwaseong, south of the capital Seoul, and was put out in two and a half hours, Samsung said.

There were no casualties and production at the plant has not been affected, the company said. The fire broke out at a wastewater processing facility within the plant that is automated and away from production lines.

Samsung said it would cooperate with fire authorities to investigate the precise cause of the fire. 

The accident comes at a time of heightened concern by the conglomerate due to the outbreak of the novel coronavirus.

Last week, the company tightened coronavirus screening procedures for its chip plants in South Korea, requiring employees to answer weekly, online self-examination

Read More

CityFibre adds 36 more towns and cities to UK full-fibre network

Once an alternative supplier of fibre broadband, CityFibre has now progressed to be a big league player following a further extension of its full fibre network in the UK, bringing the total number of premises in its reach to five million across 62 towns and cities.

Since the latter end of 2019, the broadband provider has embarked on aggressive plans to roll fibre out across the UK, and saw itself as the leading independent supplier of fibre networks after BT and Virgin Media.

However, its recent acquisition of FibreNation from UK internet service provider (ISP) TalkTalk Group has seen the company almost double in size and effectively become the UK’s third national digital infrastructure platform.

The latest expansion sees 36 additional locations given access full fibre as part of the company’s £4bn Gigabit City Investment Programme, targeting up to eight million premises.

In parallel, CityFibre has also accelerated the mobilisation

Read More