Microsoft has announced that Hafnium, a Chinese-backed cybercriminal organization, has been taking advantage of four zero-day exploits to attack on-premises Microsoft Exchange servers. These newly-discovered vulnerabilities are being used to infiltrate networks and steal data, and they pose a serious risk to any organization running on-premises Exchange servers. We strongly recommend that any organizations with on-premises Exchange servers, including hybrid Office 365 setups, should apply Microsoft’s security updates immediately.
If you are a TechMD client and are using any version of Microsoft Exchange Server that was affected by this exploit, then we have already applied the relevant security updates.
This zero-day exploit affects the following versions of Exchange:
- Microsoft Exchange Server 2019
- Microsoft Exchange Server 2016
- Microsoft Exchange Server 2013
- Microsoft Exchange Server 2010
You can find links to Microsoft’s security updates below:
To ensure your organization is protected from data breaches, your IT team will need to apply the security updates above and follow Microsoft’s guidelines to secure your Exchange server(s). Again, it is vital that this patch is applied to any affected servers as soon as possible, even for organizations that have shifted email infrastructure to Office 365 but retain any on-premises Exchange servers.
For more information about migrating your email to Microsoft Office 365 the right way, or if you’d like to discuss how TechMD can help your organization be more proactive about cybersecurity, please contact us.