Urgent Microsoft Exchange Vulnerability
ssnaugher | Posted on |

Urgent Microsoft Exchange Vulnerability
Where is the threat coming from?
At this point in time, Microsoft has identified the group – Hafnium as responsible for the threat and attack. It is believed that Hafnium is a state-sponsored threat actor based out of China.
How is it spread?
It is believed the threat is spread through 4 separate vulnerabilities in Microsoft Exchange Server. If a server has open connectivity to the Internet through port 443, which is very common, the attackers can take advantage of the vulnerability to gain access to email and data to exfiltrate the information.
How serious is the threat?
The threat is extremely serious in that it allows the attacker to not only get access to the data but also execute commands on the affected servers and related network. The most significant issue is that most if not all security is not able to detect and prevent this threat as of yet. Some cybersecurity firms have estimated that over 25% of the systems they have investigated have been affected by the vulnerability.How do you protect your environment?
It is advised to immediately download and apply the recommended emergency patches from Microsoft. More information on this particular vulnerability can be found on the Microsoft blog located at –
https://blogs.microsoft.com/on-the-issues/2021/03/02/new-nation-state-cyberattacks/
If you have any questions or need assistance applying these emergency patches –
please call us at 417-334-0494
Our Past Posts

When did you last have a health check?
Book now for an IT check-up, to get in great shape for the journey ahead? You do it for yourself and your car – now do the same for your workplace tech

Are your younger employees experiencing ‘tech shame’?
Gen Z and even some Millennial employees are less tech savvy than many employers might expect. It’s an assumption that’s leading to a sense of ‘tech shame’.

A little trust can go a long way
Countless employers still don’t trust their people to do their best work unless they’re physically in the office.

Windows is the prime target for cyber criminals
With its huge dominance in the workplace, Microsoft’s Windows has become the prime target for cyber criminals.

When can you finally forget your password?
Passkeys are set to take over from traditional passwords to give us a safer, more secure way of logging into our online accounts.

Are your people Christmas shopping from work?
Almost half of people with social media accounts admit to falling for shopping scams. If your team are shopping at work, is your business protected?