Microsoft may have to revamp its protections program after Exchange attacks
Following the most recent attacks on Microsoft Exchange email servers, Microsoft may have to revise how it shares security vulnerabilities. According to Bloomberg, a suspected leak led to the recent attacks on Exchange servers. The suspected leaks center around the Microsoft Active Protections Program (MAPP).
The MAPP has 81 participants that Microsoft shares vulnerabilities with. The program gives these partners early access so they can protect people from attacks. According to sources that spoke with Bloomberg, Microsoft is considering changes to the MAPP. The company fears that MAPP participants may have tipped hackers off about a critical vulnerability around February 18.
Microsoft first released patches to the problem on March 2, so knowing about the vulnerability on or around February 18 would provide an opportunity to take advantage of it.
Microsoft’s report is said to focus on at least two Chinese companies. Microsoft declined to comment to Bloomberg on any potential changes to the MAPP and wouldn’t share any details about its MAPP disclosures in February or any potential leaks. Microsoft did, however, state that it is still committed to the program and its members in the U.S., Israel, Russia, China, Japan, Australia, India, and parts of Europe.
“We believe there are many benefits to mutual information sharing with the security community to help protect our mutual customers against attacks,” Microsoft said in a statement. “We continue to evaluate how to best balance the benefits of this sharing with the risk of early disclosures.”
China’s Ministry of Foreign Affairs told Bloomberg, “China resolutely opposes any form of online attacks or infiltration. This is our clear and consistent stance. Relevant Chinese laws on data collection and handling clearly safeguards data security and strongly oppose cyber-attacks and other criminal activity.”
Two Chinese companies have been removed from the MAPP in the past. Hangzhou DPtech Technologies Co. was removed in 2012 for breaching a non-disclosure agreement, according to Microsoft.
Qihoo 360 Technology Co. was removed last year. According to Bloomberg’s sources, the company was removed after being placed on the U.S. Entity list related to export controls.
Potential changes to the MAPP include moving around which members are in the highest tier of the program, changing how much critical intelligence Microsoft shares with companies close to certain countries, and using a watermark to track digital code.
We may earn a commission for purchases using our links. Learn more.
Review: Intel tries its best, but the Core i9-11900K fails to shine
With the Core i9-11900K, Intel is once again turning to 14nm to eke out the last possible amount of performance out of the node. But with a new microarchitecture under the hood, let’s find out if Rocket Lake can hold its own against the best that AMD has to offer.
Review: Razer Orochi V2 should be your new lightweight travel mouse
If you travel with a laptop and need a high-precision, long-lasting gaming mouse that is also around 70 grams in weight, the new Razer Orochi V2 should be on your list. Costing $70, with over 900 hours of battery life, options for battery sizes, and even custom designs, it’s the only mouse you need for gaming or work. Here’s our review.
Gigabyte’s A520 Aorus Elite is our best AMD A520 motherboard pick
AMD’s A520 chipset is great if you’re looking to build an affordable PC. These are the most affordable motherboards that support Ryzen 5000 series processors, though you do lose a few USB ports, PCIe 4.0, and some other advanced features compared to B550 and X570 motherboards. Still, we’ve rounded up the best A520 boards right here.