We’re midway through Q2 and there’s lots of interesting news: major updates to Messageware’s Server Threat Guard (STG), the release of Microsoft’s Exchange Server SE HU6, Microsoft extended Exchange support for 2019 & 2016, and a new Exchange Server zero day security threat. Before we dig into those details, I’d like to highlight Messageware Server [...]

Security teams today are buried under an average of 960 alerts a day, and the majority are never investigated by a human at all. The result is missed breaches, mounting burnout, and detection rules that get suppressed just to keep dashboards manageable. This article looks at why the traditional alert-driven model has broken down for [...]

Smart and effective server security that combines real-time threat detection with health monitoring to identify real risks and changes in system reliability. TORONTO - May 26, 2026 - PRLog -- Messageware Incorporated today announced the release of Server Threat Guard (STG) Version 2.8. This latest release marks a significant expansion into proactive server health monitoring, adding intelligent event detection, smart [...]

Microsoft disclosed a critical vulnerability in Exchange Server on May 14, 2026, and it's already being exploited in the wild. Here's a quick breakdown of what it is, who's affected, and what's being done about it. 🚨 The official announcement is subject to ongoing updates — visit the link below to access the latest information: https://techcommunity.microsoft.com/blog/exchange/addressing-exchange-server-may-2026-vulnerability-cve-2026-42897/4518498 [...]

Microsoft has announced that no Exchange Server security updates will be released in May 2026. This covers every currently supported version of Exchange Server, including those participating in the Extended Security Update (ESU) program. Both the ESU program and Exchange security updates more broadly follow an as-needed model — patches are issued only when the [...]

Summary Microsoft released a Hotfix Update (HU6) for Exchange Server Subscription Edition (SE). The release contains no security fixes but delivers a long-awaited functional change that hybrid administrators have been preparing for since 2025: it allows organizations to start switching their Exchange Server hybrid rich coexistence from Exchange Web Services (EWS) to REST-based Microsoft Graph [...]

If your organisation is still running Exchange Server 2016 or 2019, Microsoft has announced one final extension of security coverage. On April 15, 2026, Microsoft officially announced the Period 2 Extended Security Update (ESU) program for Exchange Server 2016 and 2019, extending critical security coverage through October 2026. What Is the ESU Program? Exchange Server 2016 and 2019 [...]

Microsoft has confirmed that there are no Exchange Server security updates scheduled for release in April 2026. This applies to all currently supported versions of Exchange Server, including those enrolled in the Extended Security Update (ESU) program. Microsoft's ESU program — and Exchange security updates in general — operate on an as-needed basis, meaning patches are only released [...]

Microsoft has issued an important alert for organizations that send or receive email through Exchange Online over SMTP. If the systems involved do not trust the DigiCert Global Root G2 root certificate and its subordinate certificate authorities, secure mail flow can fail once older trust paths are no longer accepted. This matters because Exchange Online [...]

Server Threat Guard (STG) is a real-time security and health monitoring solution for Windows servers. It detects threats, tracks server health, and gives administrators the visibility they need to act before problems escalate. While the prior release focused on expanding vulnerability detection, v2.7 is centered on making that intelligence easier to see and act on [...]

Microsoft has confirmed that no security patches will be released for any version of Exchange Server in March 2026, including Exchange Server Subscription Edition (SE) and the Extended Security Update (ESU) versions of Exchange 2016 and 2019.​ Understanding the Extended Security Update Program Organizations running Exchange 2016 and 2019 after their October 14, 2025 end-of-support [...]

Microsoft has released its February 2026 security updates for Exchange Server, addressing a critical elevation of privilege vulnerability that affects multiple versions of the platform. The updates are available for Exchange Server Subscription Edition (SE) as well as legacy versions through the Extended Security Updates (ESU) program. Affected Exchange Server Versions The February 2026 security [...]

We're pleased to announce the release of Server Threat Guard (STG) Version 2.6. This update continues to expand STG's capabilities as a unified solution that combines advanced server security with comprehensive health monitoring for Windows Servers across all platforms including on-premises, Azure, AWS, and others. What's New in v2.6 STG v2.6 introduces silent installation for [...]

Microsoft 365 users learned a harsh lesson in January, cloud infrastructure isn't as reliable as promised. The month saw four major outages that disrupted businesses worldwide, with the most severe occurring on January 22 when critical services remained inaccessible for over nine hours. These repeated failures exposed fundamental weaknesses in cloud architecture and raised serious [...]

Live Probing Data Targeting Windows and Exchange Servers Last month, we blocked over 1300 malicious / unauthorized connections attempts from 13 countries targeting our infrastructure. Our systems detected this significant spike in internet probing activity targeting our Windows servers. Thanks to our real-time threat intelligence feeds, these connection attempts were identified immediately and blocked before [...]

Microsoft has confirmed that no security patches will be released for any version of Exchange Server in January 2026, including Exchange Server Subscription Edition (SE) and the Extended Security Update (ESU) versions of Exchange 2016 and 2019.​ Understanding the Extended Security Update Program Organizations running Exchange 2016 and 2019 after their October 14, 2025 end-of-support [...]

Smart and effective server security that combines real-time threat detection with health monitoring to identify real risks and changes in system reliability. TORONTO - Jan. 14, 2026 - PRLog -- Messageware Incorporated today announced the release of Server Threat Guard (STG) Version 2.5 for 2026. This latest release significantly expands STG's capabilities, evolving beyond traditional intrusion detection to deliver a unified [...]

Microsoft has issued crucial security updates for Exchange Server, addressing multiple vulnerabilities across Exchange Server Subscription Edition (SE), Exchange Server 2019, and Exchange Server 2016. The December 2025 security updates patch several critical flaws, including CVE-2025-64666, an elevation of privilege vulnerability, and CVE-2025-64667, a spoofing vulnerability. SUs are available for the following specific versions of [...]

In this article, we'll explore high volume logon attacks (HVAs) against on-premise Microsoft Exchange servers including the ongoing detrimental effects on the organization being attacked. Active Directory (AD) environments are particularly susceptible because a single compromised account can trigger widespread network infiltration. As a result, password attacks can lead to severe consequences, including data breaches, [...]

Organizations running Exchange Server SE always utilize firewalls to help protect the environment. These range from very expensive comprehensive systems with many features to firewalls with very basic security controls. I’m always surprised by the very diverse deployments across the many customer systems we encounter.  Why Traditional Firewalls and Geo-Blocking Fall Short Some firewalls offer [...]