Trusted by more than 2500 companies with over 5 million users
5 12, 2023

Over 20,000 Vulnerable Microsoft Exchange Servers Exposed to Attacks

2023-12-06T10:00:09-05:00

According to recent scans by The ShadowServer Foundation and security researcher Yutaka Sejiyama, over 20,000 Microsoft Exchange servers are running outdated and unsupported software. These servers are vulnerable to multiple critical remote code execution vulnerabilities. Thousands of Exchange Server 2007, 2010, and 2013 Instances Discovered The scans uncovered over 20,000 end-of-life Microsoft Exchange servers reachable [...]

Over 20,000 Vulnerable Microsoft Exchange Servers Exposed to Attacks2023-12-06T10:00:09-05:00
30 11, 2023

Exchange Server Security: Why MFA/2FA Is Not Enough

2024-05-23T07:22:12-04:00

Gaps in Multi-Factor Authentication (MFA) In this article, we will explore some of the drawbacks of MFA/2FA as a user security tool. Multi-Factor Authentication (MFA), also known as 2-Factor Authentication (2FA), has become an essential tool for protecting user accounts. It has become so ubiquitous, Microsoft has recently started enforcing it on all tenants by [...]

Exchange Server Security: Why MFA/2FA Is Not Enough2024-05-23T07:22:12-04:00
29 11, 2023

Exchange Server 2019: CU14 Delayed to Jan 2024

2023-12-13T08:00:35-05:00

Last year, Microsoft announced a new servicing model for Exchange Server, with two Cumulative Updates (CUs) per year. However, Microsoft won't be releasing a second CU for 2023. There are two more CUs on the horizon for Exchange Server 2019: CU14 (H1 2024) and CU15 (H2 2024). The release date for CU14 has shifted to [...]

Exchange Server 2019: CU14 Delayed to Jan 20242023-12-13T08:00:35-05:00
28 11, 2023

Why Windows cached credentials cause AD lockouts

2025-02-18T09:47:20-05:00

What are Windows cached credentials? The purpose of Windows cached credentials is to enable users to log into their accounts and access network resources even when the authentication server is unavailable, such as during offline use, while also improving login performance by reducing the need for frequent server authentications. Cached credentials are stored locally on [...]

Why Windows cached credentials cause AD lockouts2025-02-18T09:47:20-05:00
23 11, 2023

Understanding Microsoft’s Exchange Server Servicing Model

2023-11-27T11:14:24-05:00

Microsoft's Shift in Servicing Cadence In a move that reflects a commitment to both innovation and stability, Microsoft announced last year a change in its servicing model for Exchange Server. This strategic shift saw the company adopt a twice-yearly release schedule for Cumulative Updates (CUs), targeting the first and second halves of each calendar year. [...]

Understanding Microsoft’s Exchange Server Servicing Model2023-11-27T11:14:24-05:00
14 11, 2023

Microsoft November 2023 Patch Tuesday: Exchange Server Security Updates

2024-02-13T13:43:34-05:00

Microsoft has released Security Updates (SUs) for vulnerabilities found in: Exchange Server 2019 Exchange Server 2016 SUs are available for the following specific versions of Exchange Server: Exchange Server 2019 CU12 and CU13 Exchange Server 2016 CU23 The November 2023 SUs address vulnerabilities responsibly reported to Microsoft by security partners and found through Microsoft’s internal processes. These vulnerabilities affect [...]

Microsoft November 2023 Patch Tuesday: Exchange Server Security Updates2024-02-13T13:43:34-05:00
14 11, 2023

Emerging Microsoft Exchange Zero-Day Vulnerabilities

2024-01-30T06:52:45-05:00

Microsoft Exchange is currently under threat due to four newly discovered zero-day vulnerabilities, which attackers can exploit remotely to execute arbitrary code or disclose sensitive information on affected installations. These vulnerabilities were disclosed by Trend Micro's Zero Day Initiative (ZDI) on September 7th and 8th, 2023. Despite their potential threat, Microsoft has chosen to delay [...]

Emerging Microsoft Exchange Zero-Day Vulnerabilities2024-01-30T06:52:45-05:00
24 10, 2023

Exchange Protocol Guard – Software Release – EPG 3.7.6

2023-11-15T07:28:29-05:00

Software Release – EPG 3.7.6 Toronto, Canada – October 24th, 2023: Messageware Incorporated, the leader in Microsoft Exchange security and productivity tools, announced a major update of their flagship product Messageware Exchange Protocol Guard (EPG). The following updates are now available for customers and trial users: Messageware EPG 2019 v3.7.6 Messageware EPG 2016 v3.7.6 Messageware EPG [...]

Exchange Protocol Guard – Software Release – EPG 3.7.62023-11-15T07:28:29-05:00
18 10, 2023

October 2023: Changes to Exchange Online

2023-10-18T18:08:53-04:00

October has been a busy month of changes for Exchange Online users. This article summarizes recent updates and announcements from Microsoft on the Exchange Team Blog. 1) Farewell to Remote PowerShell in Exchange Online Earlier this year, Microsoft officially depreciated the Remote PowerShell Protocol (RPS) in Exchange Online. This month, RPS is no longer available [...]

October 2023: Changes to Exchange Online2023-10-18T18:08:53-04:00
12 10, 2023

Microsoft October 2023 Patch Tuesday: Exchange Server Security Updates

2023-11-17T10:50:55-05:00

Microsoft has released Security Updates (SUs) for vulnerabilities found in: Exchange Server 2019 Exchange Server 2016 SUs are available for the following specific versions of Exchange Server: Exchange Server 2019 CU12 and CU13 Exchange Server 2016 CU23 The October 2023 SUs address vulnerabilities responsibly reported to Microsoft by security partners and found through Microsoft’s internal processes. Although we are [...]

Microsoft October 2023 Patch Tuesday: Exchange Server Security Updates2023-11-17T10:50:55-05:00
10 10, 2023

Why Exchange Servers cause Active Directory User Lockouts and how to Prevent Them

2025-02-18T09:44:12-05:00

Article Summary: This article examines the common Exchange Server attacks that result in Active Directory lockouts and effective techniques to prevent Active Directory user accounts lockouts. By deploying intelligent threat detection, enforcing strong password policies, enabling multi-factor authentication, and monitoring signs of compromise, companies can thwart attackers’ efforts to access mailboxes and maintain business continuity. [...]

Why Exchange Servers cause Active Directory User Lockouts and how to Prevent Them2025-02-18T09:44:12-05:00
3 10, 2023

Exchange in the Crosshairs: Uncovering and Countering Probing Threats

2023-12-13T12:08:34-05:00

Who’s probing your Exchange Server? Today’s systems reveal more information to the internet than intended. If you have an internet facing Exchange Server, it is being probed to discover its specifications, vulnerabilities, and weaknesses. RELATED: Watch a video on High Volume Attacks attacks on Exchange Server Hackers Hackers probe Exchange Servers to identify weaknesses or [...]

Exchange in the Crosshairs: Uncovering and Countering Probing Threats2023-12-13T12:08:34-05:00
19 09, 2023

Celebrating 30 Years: Messageware’s Journey of Success

2023-11-17T13:40:30-05:00

For the past 30 years, Messageware has provided cutting-edge Microsoft solutions, and empowered businesses with tools to enhance their productivity and security. As we celebrate Messageware's anniversary, we reflect on its remarkable journey of innovation and growth. For more information, visit our About Us page. The Early Days Messageware's story began in 1993. Our founder [...]

Celebrating 30 Years: Messageware’s Journey of Success2023-11-17T13:40:30-05:00
21 08, 2023

Microsoft Exchange – Messageware Q3 2023 Newsletter

2023-09-05T13:30:41-04:00

Important: The Aug 8 SU has been withdrawn and re-released by Microsoft due to installation issues in some environments. For more information and what to do if you installed Aug 8 SUv1 you can refer to the Microsoft blog article here: Re-release of August 2023 Exchange Server Security Update packages - Microsoft Community Hub. Otherwise, proceed [...]

Microsoft Exchange – Messageware Q3 2023 Newsletter2023-09-05T13:30:41-04:00
16 08, 2023

Microsoft August 2023 Patch Re-Release: Exchange Server Security Updates

2023-08-16T16:57:01-04:00

Microsoft has re-released Security Updates (SUs) for vulnerabilities found in: Exchange Server 2019 Exchange Server 2016 SUs are available for the following specific versions of Exchange Server: Exchange Server 2019 CU12 and CU13 Exchange Server 2016 CU23 More information from Microsoft about the re-release is available here. The following table describes the actions you need to take based on [...]

Microsoft August 2023 Patch Re-Release: Exchange Server Security Updates2023-08-16T16:57:01-04:00
11 08, 2023

Milestone Achievement: Messageware Software in 55 Countries

2023-08-10T16:12:12-04:00

Great news - Messageware has reached a significant milestone in its journey. Our software is now used in an impressive 55 countries worldwide! Our dedicated team of experts continuously improve our Microsoft Exchange Server security software to stay ahead of ever-evolving cyber threats. We’re proud of our growing client base: 2500+ enterprises in all industries; [...]

Milestone Achievement: Messageware Software in 55 Countries2023-08-10T16:12:12-04:00
9 08, 2023

Microsoft August 2023 Patch Tuesday: Exchange Server Security Updates

2023-09-21T03:22:15-04:00

UPDATE: Microsoft re-released the SU on August 15th, 2023. See more details here. The August 2023 SUs address vulnerabilities responsibly reported to Microsoft by security partners and found through Microsoft’s internal processes. Although we are not aware of any active exploits in the wild, our recommendation is to immediately install these updates to protect your [...]

Microsoft August 2023 Patch Tuesday: Exchange Server Security Updates2023-09-21T03:22:15-04:00
21 07, 2023

How to Change Active Directory Lockout Policy

2025-02-18T09:41:29-05:00

In this article, we'll answer frequently asked questions about how to manage your Active Directory Lockout policy. There is no one-size-fits-all approach to customizing these settings as organizations have different risk levels. For helpful information about what causes frequent Active Directory account lockouts, check out our blog "Solved: Active Directory Account Lockouts and How to [...]

How to Change Active Directory Lockout Policy2025-02-18T09:41:29-05:00
20 07, 2023

New Phishing Attack Distributes Malware through Microsoft Exchange Servers 

2023-07-20T17:07:46-04:00

Microsoft and the Ukraine CERT have identified targeted attacks against the defense industry and Microsoft Exchange servers by a Russian state-sponsored hacking group known as Turla. The attacks leverage a new malware backdoor called 'DeliveryCheck,' a .NET backdoor which can execute second-stage payloads. What makes DeliveryCheck stand out is its Microsoft Exchange Server-side component. The [...]

New Phishing Attack Distributes Malware through Microsoft Exchange Servers 2023-07-20T17:07:46-04:00