support
GET A DEMO
CONTACT US

    Archive360 News

    Latest information about Archive360 and industry information

    Jim McCarthy, Esq.

    August 1st, 2023 2023

    Storm 0558 & Microsoft Vulnerability Exploits

    Discussing the Potential Threats of Storm 0558 and Confirmation of No Impact to Archive360 Customers NEW YORK, July 27, 2023 - Background: In June 2023, a Federal Civilian Executive Branch agency identified suspicious activity in their Microsoft 365 cloud environment. Several media reports identify the US State Department as the reporting agency and that the US Commerce Department was also impacted, including Commerce Secretary Gina Raimondo’s account being among those compromised. The agency reported the activity to Microsoft and the Cybersecurity and Infrastructure Security Agency (CISA), and Microsoft determined that the actors accessed and exfiltrated unclassified Exchange Online Outlook data. According to Microsoft, the actors acquired a private encryption key and used it to forge access tokens for Outlook Web Access and Outlook.com. CISA and the FBI released a joint Cybersecurity Advisory to provide guidance to critical infrastructure organizations on enhancing monitoring of Microsoft Exchange Online environments https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-193a. The actors were identified as a China-based adversary referred to as “Storm-0558” associated with politically motivated attacks. On July 12, 2023, CISA released an Advisory relating to this security incident in both federal and commercial email systems compromised via Microsoft Azure Active Directory OpenID endpoint. https://www.cisa.gov/news-events/cybersecurityadvisories/aa23-193

    Read More

    December 21st, 2020 2020

    Archive360 Security Statement Regarding SolarWinds Event

    On December 17, 2020, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) reported that it is aware of compromises of U.S. government agencies, critical infrastructure entities, and private sector organizations by an advanced persistent threat (APT) actor beginning in at least March 2020.

    Read More

    March 12th, 2020

    Business Continuity as Usual for Archive360

    At Archive360, the health and safety of our employees, as well as our customers and business partners, is of primary concern. We are closely monitoring the COVID-19 situation and, as a global technology company, are confident that we can abide by locally imposed policies while still supporting our customers’ projects and business operations.

    Read More
    1 of 1

    Meet Your Host

    Bill Tolson

    Bill is the Vice President of Global Compliance for Archive360. Bill brings more than 29 years of experience with multinational corporations and technology start-ups, including 19-plus years in the archiving, information governance, and eDiscovery markets. Bill is a frequent speaker at legal and information governance industry events and has authored numerous eBooks, articles and blogs.

    Jim McCarthy, Esq.

    Recent Posts

    Storm 0558 & Microsoft Vulnerability Exploits

    Posted by Jim McCarthy, Esq. on Aug 1, 2023 4:48:28 PM

    Discussing the Potential Threats of Storm 0558 and Confirmation of No Impact to Archive360 Customers

    NEW YORK, July 27, 2023 - Background: In June 2023, a Federal Civilian Executive Branch agency identified suspicious activity in their Microsoft 365 cloud environment. Several media reports identify the US State Department as the reporting agency and that the US Commerce Department was also 
    impacted, including Commerce Secretary Gina Raimondo’s account being among those 
    compromised. The agency reported the activity to Microsoft and the Cybersecurity and 
    Infrastructure Security Agency (CISA), and Microsoft determined that the actors accessed and 
    exfiltrated unclassified Exchange Online Outlook data. According to Microsoft, the actors
    acquired a private encryption key and used it to forge access tokens for Outlook Web Access 
    and Outlook.com. CISA and the FBI released a joint Cybersecurity Advisory to provide guidance 
    to critical infrastructure organizations on enhancing monitoring of Microsoft Exchange Online 
    environments https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-193a. The 
    actors were identified as a China-based adversary referred to as “Storm-0558” associated with 
    politically motivated attacks. On July 12, 2023, CISA released an Advisory relating to this 
    security incident in both federal and commercial email systems compromised via Microsoft 
    Azure Active Directory OpenID endpoint. https://www.cisa.gov/news-events/cybersecurityadvisories/aa23-193

    Read More
    0 Comments Click here to read/write comments

    Topics: 2023

    Archive360 Security Statement Regarding SolarWinds Event

    Posted by Jim McCarthy, Esq. on Dec 21, 2020 2:49:21 PM

    On December 17, 2020, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) reported that it is aware of compromises of U.S. government agencies, critical infrastructure entities, and private sector organizations by an advanced persistent threat (APT) actor beginning in at least March 2020.

    Read More
    0 Comments Click here to read/write comments

    Topics: 2020

    Business Continuity as Usual for Archive360

    Posted by Jim McCarthy, Esq. on Mar 12, 2020 5:26:32 PM

    At Archive360, the health and safety of our employees, as well as our customers and business partners, is of primary concern.  We are closely monitoring the COVID-19 situation and, as a global technology company, are confident that we can abide by locally imposed policies while still supporting our customers’ projects and business operations. 

    Read More
    0 Comments Click here to read/write comments
    All posts