Mimecast says SolarWinds hackers breached its network and spied on customers

4 years ago
March 16, 2021
0 replies
6 views

+54

Jasper_The_Rasper
Moderator
11517 replies

Mimecast-issued certificate used to connect to customers’ Microsoft 365 tenants.

DAN GOODIN - 3/16/2021

Email-management provider Mimecast has confirmed that a network intrusion used to spy on its customers was conducted by the same advanced hackers responsible for the SolarWinds supply chain attack.

The hackers, which US intelligence agencies have said likely have Russian origins, used a backdoored update for SolarWinds Orion software to target a small number of Mimecast customers. Exploiting the Sunburst malware sneaked into the update, the attackers first gained access to part of the Mimecast production-grid environment. They then accessed a Mimecast-issued certificate that some customers use to authenticate various Microsoft 365 Exchange web services.

Full Article.

Be the first to reply!

Mimecast-issued certificate used to connect to customers’ Microsoft 365 tenants.

Reply

Related Topics

Microsoft says SolarWinds hackers may have breached 14 more companies

Chinese hackers breached T-Mobile's routers to scope out network

HPE says hackers breached Aruba Central using stolen access key

Barnes & Noble warns customers it has been hacked, customer data may have been accessed

Sprint says hackers breached customer accounts via Samsung website

Sign up

Login to the community

Scanning file for viruses.

This file cannot be downloaded