In March 2021, Microsoft encountered a massive security breach that affected over 30,000 organizations in the U.S., ranging from businesses to government agencies. This attack was notably significant due to its broad impact and the exploitation of vulnerabilities within Microsoft's Exchange Server software. The attackers were able to gain access to email accounts, and also install additional malware to facilitate long-term access to victim environments. Given the scale and the method of attack—exploiting software vulnerabilities—the incident highlighted critical concerns regarding software security and the necessity for timely updates and patches. The breach not only compromised sensitive information but also eroded trust in Microsoft's security measures, pushing the company to swiftly address the vulnerabilities and enhance their security posture to prevent future incidents. The repercussions of the attack underscored the importance of robust cybersecurity defenses and the need for constant vigilance in a landscape where threats are continuously evolving.
Source: https://www.varonis.com/blog/cybersecurity-statistics
"id": "mic311050724",
"linkid": "microsoft",
"type": "Vulnerability",
"date": "03/2021",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"