Trusted by more than 2500 companies with over 5 million users
29 11, 2022

ProxyNotShell Proof-of-Concept Published Online

2022-11-29T08:31:03-05:00Blog, Exchange 2013, Exchange 2016, Exchange 2019, Exchange Security|

Security researchers confirm Proof-of-Concept (PoC) works against unpatched versions of Microsoft Exchange Server 2013, 2016 and 2019 In early August, researchers discovered cyberattacks against critical infrastructure using two unpublished Exchange Server security vulnerabilities. Microsoft’s Security Research Center (MSRC) stated: “The first exploit identified as CVE-2022-41040, is a Server-Side Request Forgery (SSRF) vulnerability, and the second one, identified as CVE-2022-41082, allows [...]

Read More
21 11, 2022

Microsoft Exchange – Messageware Q4 2022 Newsletter

2022-11-21T10:18:35-05:00News|

The last few months have been busy. Lets look at the happenings and news from the Exchange Server Community: MEC Technical Airlift We hope you attended the Microsoft Exchange Conference ( MEC Technical Airlift ) and had an opportunity to engage with the community and listen to the keynote with Rajesh, Perry, and Jared. In [...]

Read More
10 11, 2022

Microsoft November 2022 Patch Tuesday: Exchange Server Security Updates

2022-11-11T05:53:35-05:00Blog, Exchange 2013, Exchange 2016, Exchange 2019, Exchange Security|

Microsoft has released security updates for two zero-day vulnerabilities: CVE-2022-41040, a server-side request forgery vulnerability, and CVE-2022-41082, which allows remote code execution. Collectively known as ProxyNotShell, the Exchange Server vulnerabilities have led to a spate of attacks linked to nation-state threat actors since late September. The SUs address vulnerabilities responsibly reported to Microsoft by security [...]

Read More
25 10, 2022

On-Premise Chosen over Microsoft 365 due to Server Privacy Concerns

2022-11-15T10:16:07-05:00Blog, Exchange 2013, Exchange 2016, Exchange 2019, In The News|

In an ongoing battle that started in 2018 with the EU, several state courts, including the federal German court, found that Microsoft 365 was not compliant with GDPR laws. The ban mostly affects educational institutions and companies that use Microsoft’s 365 product line. The ban comes after Microsoft ended its special arrangements with German users. An [...]

Read More
12 10, 2022

Microsoft October 2022 Patch Tuesday: Exchange Server Security Updates

2022-10-12T07:06:28-04:00Blog, Exchange 2013, Exchange 2016, Exchange 2019, Exchange Security|

The SUs address vulnerabilities responsibly reported to Microsoft by security partners and found through Microsoft’s internal processes. Our recommendation is to immediately install these updates to protect your environment. NOTE   The October 2022 SUs do not contain fixes for the zero-day vulnerabilities reported publicly on September 29, 2022 (CVE-2022-41040 and CVE-2022-41082). Please see this blog post to apply mitigations for those [...]

Read More
7 10, 2022

Alert: New Zero-Day Vulnerability Targets Microsoft On-Premise and Hybrid Cloud Exchange Servers

2022-10-07T17:22:22-04:00Exchange 2013, Exchange 2016, Exchange 2019, Exchange Security|

Summary: In early August, researchers from the cybersecurity vendor GTSC discovered cyberattacks against critical infrastructure using two unpublished Exchange Server security vulnerabilities. Microsoft’s Security Research Center (MSRC) stated: “The first exploit identified as CVE-2022-41040, is a Server-Side Request Forgery (SSRF) vulnerability, and the second one, identified as CVE-2022-41082, allows Remote Code Execution (RCE) when PowerShell [...]

Read More
26 09, 2022

Exchange Online Servers Hacked Using Malicious OAuth Applications

2022-10-07T05:28:26-04:00Blog, Exchange Security, Microsoft Exchange|

Microsoft’s 365 Defender Research Team recently investigated an attack in which malicious OAuth applications were deployed on compromised cloud tenants. Initial Access The attacker first needed to compromise a cloud user’s account that had sufficient permissions in order to create a malicious OAuth application. The threat actor did this by launching credential-stuffing attacks against high-risk [...]

Read More
19 09, 2022

CISA Publishes Mitigation Techniques Against Exchange Server Attacks

2022-09-21T05:02:27-04:00Blog, Exchange 2013, Exchange 2016, Exchange 2019, Exchange Security|

In response to the recent targeting of critical infrastructure in the US and abroad, the Cybersecurity and Infrastructure Security Agency (CISA) urges network and security administrators to prepare and immediately mitigate potential cyber threats with the following measures. Implement and apply backup and recovery policies and procedures: Maintain offline backups of dataRegularly test backup and restorationEnsure all backup [...]

Read More
13 09, 2022

Nemesis Kitten targets Exchange Server for Attacks

2022-09-13T03:39:17-04:00Blog, Exchange 2013, Exchange 2016, Exchange 2019, Exchange Security|

Microsoft Security Threat Intelligence has been tracking multiple ransomware campaigns by a group known as DEV-0270 who also goes by the alias Nemesis Kitten. Who is DEV-0270? DEV-0270, a sub-group of the Iranian threat actor known as PHOSPHORUS, are known for leveraging newly disclosed vulnerabilities against their targets. If successful, the group contacts the victim [...]

Read More
26 08, 2022

Microsoft Exchange Server Security: The 10 Best Ways to Secure Your Server

2022-09-16T04:09:53-04:00Exchange 2013, Exchange 2016, Exchange 2019, Exchange Security, OWA Security|

Security breaches cause organizational chaos, financial and reputation risk. Given how organizations have shifted to a hybrid of in-office and work-from-home, there is a significant increase in the security threat landscape, and it’s more important than ever to improve and harden Exchange Server security. These best practices help provide a baseline security framework that all [...]

Read More