Earlier this month, Microsoft became aware of hacker groups attacking unpatched Microsoft exchange servers — a cyber threat known as 0-Day Exploits.
What does that mean?
Hackers compromised many mail servers around the globe, obtaining access to legit email addresses. That means that a phishing scam could be launched from the email address of someone you know.
How can I protect myself?
- Put yourself on high alert for any email communications that seem unusual.
- Don’t immediately trust ANY EMAIL, even if it’s from the email address of someone you frequently work with.
- Even if your organization’s email server is secure, that doesn’t mean that the servers of your vendors or customers haven’t been compromised.
- For example, if you receive an email requesting any personal or private information such as phone numbers or passwords or asking you to send payment to a new bank account, pause. Then, call the contact that you regularly work with to verify that it’s legitimate.
- Moreover, don’t exchange classified or sensitive information over email.
- Continue to follow general cybersecurity best practices.
If you suspect that your organization’s email exchange server has been compromised, reach out to i-Tech (or your internal IT department) for help.