Microsoft suspects MAPP participants of having links with hackers

Microsoft is considering changing the Microsoft Active Protections Program (MAPP) rules, at least for some of its members. The company believes that MAPP participants could have provided hackers with information about vulnerabilities in Exchange, which caused numerous attacks in March this year. Bloomberg writes about this concerning its own informed sources.

As a reminder, at present, MAPP members are more than 80 organizations from different countries. Under this program, Microsoft shares information about identified vulnerabilities in its software with partners before the information becomes publicly available. Microsoft believes that one of the program participants could have provided hackers with information about vulnerabilities in Exchange. The attackers were able to conduct a large-scale campaign in which tens of thousands of enterprises were attacked worldwide.

This was reported by knowledgeable sources who wished to maintain confidentiality since Microsoft did not permit the disclosure of data regarding the investigation of this incident. The report says that Microsoft’s investigation is focused on at least two Chinese companies that may have been the source of the Exchange vulnerability leak.

Microsoft declined to comment on this issue and plans to change the rules of the MAPP program. A representative of the IT giant said that the company remains committed to the program and intends to continue cooperation with partners from the United States, China, Russia, Israel, Japan, and other countries. “ We believe that sharing information with the security community has many benefits in protecting our mutual clients from attacks. We continue to evaluate how best to balance the benefits of such an exchange with the risks of premature disclosure, ”the source quoted a Microsoft spokesman as saying.