The European Banking Authority (EBA) has been the subject of a cyberattack against its Microsoft Exchange Servers, which is affecting many organizations worldwide. The EBA has established that the scope of the event caused by the recently widely notified vulnerabilities was limited and that the confidentiality of the EBA systems and data has not been compromised.
Thanks to the precautionary measures taken, the EBA has managed to remove the existing threat and its email communication services have, therefore, been restored. Since it became aware of the vulnerabilities, the EBA has taken a proactive approach and carried out a thorough assessment to appropriately and effectively detect any network intrusion that could compromise the confidentiality, integrity and availability of its systems and data.
The analysis was carried out by the EBA in close collaboration with the Computer Emergency Response Team (CERT-EU) for the EU institutions, agencies and bodies, the EBA’s ICT providers, a team of forensic experts and other relevant entities. Besides re-securing its email system, the EBA remains in heightened security alert and will continue monitoring the situation.
At least 30,000 organizations across the United States — including a significant number of small businesses, towns, cities and local governments — have been hacked by an unusually aggressive Chinese cyber espionage unit that’s focused on stealing email from victim organizations, multiple sources told KrebsOnSecurity. This latest exploit comes hot on the heels of the SolarWinds cyberattack.