Microsoft partners may have provided suspected hackers with data to launch a cyberattack using a vulnerability in Exchange Server software, The Wall Street Journal reports
Microsoft is investigating a possible leak of sensitive data that the company provides to cybersecurity firms through its Microsoft Active Protections Program (Mapp), the Journal says. About 80 firms worldwide are members of Mapp, 10 of which are based in China.
It is possible that one of those companies could have secretly provided the hackers with information about innovations in Microsoft software that was used in the attack.
According to the newspaper, this theory is supported by the fact that the cyber attack, which began on February 28, exploited vulnerabilities fixed in an update to Exchange Server.