Hackers steal Mimecast certificate used to encrypt customers’ M365 traffic

Enlarge (credit: Getty Images)

Email management provider Mimecast said that hackers have compromised a digital certificate it issued and used it to target select customers who use it to encrypt data they sent and received through the company’s cloud-based service.

In a post published on Tuesday, the company said that the certificate was used by about 10 percent of its customer base, which—according to the company—numbers about 36,100. The “sophisticated threat actor” then likely used the certificate to target “a low single digit number” of customers using the certificate to encrypt Microsoft 365 data. Mimecast said it learned of the compromise from Microsoft.

Certificate compromises allow hackers to read and modify encrypted data as it travels over the Internet. For that to happen, a hacker must first gain the ability to monitor the connection going into and out of a target’s network. Typically, certificate compromises require access to highly fortified storage devices that store private encryption keys. That access usually requires deep-level hacking or insider access.

Read 4 remaining paragraphs | Comments

Leave a Reply

Your email address will not be published. Required fields are marked *

Translate »
Legal Notice: Views expressed in articles published in www.ebusinessbrief.com are those of the authors and www.ebusinessbrief.com or its owners take no responsibility regarding the same. Advertisements in www.ebusinessbrief.com are published for information of the subscribers. www.ebusinessbrief.com does not authenticate, endorse or guarantee any of the products or services or claims made by the Advertisers. Readers are advised to themselves verify the details. No part of this publication may be reproduced by any means without prior written permission from the Editor. Permission is normally granted wherever sufficient acknowledgement is given to www.ebusinessbrief.com.