The dedicated email servers of the European Banking Authority (EBA) were compromised in a global-scale hack on the Microsoft Exchange last weekend.
The EU regulatory agency headquartered in Paris has stated that personal data could have potentially been accessed from its email servers in the attack. The EBA added that it had responded by pulling down its entire system for email, commenting that it would remain offline while the damage was fully assessed. It commented:
“The EBA is working to identify what, if any, data was accessed.”
From world governments to major enterprises, Microsoft Exchange servers are a common choice for an email solution, yet very few organisations have so far come forward and admitted that their systems have been hit by the recent hack.
How did the hack occur?
According to experts at the Redmond-based tech giant, the recent cyberattack exploited a weakness in the Microsoft Exchange email system or employed the use of stolen passwords, so that it appeared as if an authorised user was accessing the email system. After obtaining access, the hacker would then assume remote control of the Microsoft Exchange’s email server and steal confidential information from the vulnerable network.
Officials in the US have warned that the recent attack was still ongoing and represented an “active threat”.
Jan Psaki, press secretary for the White House, commented:
“Everyone running these servers – government, private sector, academia – needs to act now to patch them.”
Who was responsible for the cyberattack?
Microsoft believes the assault on the Exchange is the work of a Chinese hacking gang, known as Hafnium, but the country has denied any involvement in the attack. Victims of the recent hack also include law firms, higher education facilities, researchers of infectious diseases, defence contractors, non-government organisations, policymakers and a wide range of SMEs.
Complete email security for enterprises
Companies hit by hacks like this would be wise to consider stronger security solutions, like the secure platform designed by Galaxkey. With no passwords stored and zero backdoors, it presents no viable vectors for attackers to gain unauthorised entry to enterprise email accounts.
Along with these effective security measures, users can also take advantage of end-to-end encryption and a unique suite of dedicated data protection tools. Our secure email platform has been built to deliver a seamless solution for secure communications, offering a robust defence against hacks. Fully compatible with Windows, Android, Outlook and iOS, this versatile option is easy to use.
With effective operation deployed via single-click encryption, enterprise pros can be sure their emails and any files attached always remain secure and free from prying eyes, whether they are in transit or being stored in mailboxes or outbound servers. Anywhere, anytime, users of the platform can benefit from a work environment that is always fully compliant and safe.
Contact our expert team today to experience an online demonstration, or for a more in-depth investigation, you can explore the secure platform yourself with a free two-week trial, and stay safe from destructive hacks.