Early last week it was announced that a hack on Microsoft's widely-used business email software, Exchange, has morphed into a global cybersecurity issue.
While in no way believed to be connected to the SolarWinds supply chain attack, there is concern that lags in patching vulnerable servers could have an even more devasting impact on small businesses.
This zero-day attack affects "in-house" exchange servers. Hackers have been racing to infect as many victims as possible before companies can secure their computer systems.
This sophisticated attack by Chinese government hacking group has so far compromised at least 60,000 known instances of exchange globally. Unlike many of the recent compromises, the majority of victims appear to be small or medium-sized businesses. The Cybersecurity and Infrastructure Security Agency (CISA) is recommending immediate remediation of in-house exchange servers.
To get started, follow these detailed mitigation steps.
Please note: Vista Bank does not utilize the systems in question and has taken precautionary mediation steps to verify our emails remain secure and trustworthy.
Vista always recommends keeping your computers, servers, and devices up to date on the latest updates and releases. Be vigilant for suspicious emails, use trusted tools to scan your computers for malware, and secure your administrative and/or sensitive accounts with multifactor authentication.