Trusted by more than 2500 companies with over 5 million users

Timeline of Microsoft Exchange Server Zero-Day attacks

June 8, 2021 - Microsoft June 2021 Patch Tuesday: 50 vulnerabilities patched, six zero-days exploited in the wild Six out of seven zero-days are being actively used in cyberattacks. ... Microsoft June 2021 Patch Tuesday: 50 vulnerabilities patched, six zero-days ... Last month, Microsoft resolved 55 security flaws, four of which were deemed critical in ... flaws. .… [Read More] May 24, 2021 - [...]

2021-06-25T08:49:29-04:00Exchange Security|

Bots Automatically Target Credit Union’s Exchange Servers With Password Spray Attacks

Exchange Server Hacks: Notes From The Field Cybersecurity is a top concern for everyone in the banking and financial sectors, and credit unions are no exception. The speed at which bots discover and target internet-facing Exchange Servers underscores the need for a variety of security solutions to minimize attack surfaces. In our fifth and final [...]

Telco Adds Exchange Server Protocol Guard to Prevent AD Lockouts Caused by 2FA Login Software

Exchange Server: Notes From the Field This case involves attacks at a division of a large Telco with a strong IT team operating more than sixty on-premises servers and mandated 2FA security solution for divisions managing their own Exchange Servers. And then … several incidents lead one Division’s security team to discover that password guessing [...]

Disgruntled ex-employee attacks Exchange Server with Outlook Mobile from their BYOD device

Exchange Server: Notes from the Field Support staff in a large manufacturing company were experiencing a sudden increase in the number of calls dealing with Active Directory user account lockouts and email password resets. The Exchange Server messaging group reached out to us for help. Together we installed Exchange Protocol Guard (EPG) to find out [...]

Zero-day Security Updates for Microsoft Exchange (March 2021)

As you are aware, Microsoft released zero-day Security Updates last week for all versions of Exchange Servers.Microsoft has stated it is a critical-level update.  It appears that ‘unauthenticated’ executions could occur on Exchange Servers exposing data.The following links summarize steps that your organization can take: […]

Rethinking BYOD Security with Exchange Outlook Web

We're living in a world of anywhere access where distinction between work and home life has blurred. Employees are requesting, no, demanding access corporate applications, data and resources from virtually anywhere and on almost any device. And your IT team is under immense pressure to provide end users with remote secure access to corporate resources–but at [...]

7 Ways to Secure Sensitive Corporate Data Crossing the Border

Recently, The New York Times ran an article warning travelers to exercise the same degree of security over data on mobile devices as they would in protecting themselves from muggers. The warning comes in the wake of increased pressure by foreign and domestic governments for travelers to hand over devices and passwords because border agents [...]