March has been a difficult month for everyone with Exchange Servers. The HAFNIUM attack has some damage estimates exceeding 100,000 servers. And while the initial attack goal was data theft (exfiltration), there are now reports that the attack has shifted to ransomware.
We’ve received many questions on how Messageware Exchange Guard (EPG) can help with the March zero-day attack and I thought these might be interesting for you:
With Messageware EPG (www.messageware.com/epg) there are many critical security features and post-incident assistance like:
- Automatic monitoring of re-use of stolen credentials
- Easy analytics access to both successful and unsuccessful logins
- Dynamic blocking of IPs being used for both High and Low volume attacks
- Access to geographic and user-agent data at a single report click
Customers also use EPG to monitor the system post-incident for unusual volumes of activity, successful logins from suspicious locations, and high password failure volumes against key user accounts. Reports like “Rollup Logins by Username” can be used in conjunction with spikes in Weekly and Daily Activity graphs to assist in your security awareness.
If you would like to see a live EPG web demo or have a short discussion on Exchange Security, book a 15 -minute timeslot with Gregg, our enterprise security account manager:
OWA Integrated with Windows for Firstline Workers
We’re pleased to announce that the new versions of ActiveSend and OWA Desktop are fully integrated with Microsoft Edge on Windows 10. This provides a much faster and seamless Windows experience with OWA.
These two products make OWA your default client and provide a more Outlook-like experience – watch the short videos below.We’ve created a series of customer stories about overcoming the challenges of OWA with Messageware ActiveSend and OWA Desktop — removing barriers and powering-up Firstline Worker productivity.
Microsoft Exchange Server CU’s – 2019,16,13,10
Quarterly Microsoft Exchange Server CUs (cumulative updates) and March security updates have been released for Exchange 2019, 2016, 2013, and 2010. As always, we have included the links below to the Microsoft Updates and matching Messageware releases.
President and CEO
Latest Cumulative Updates and Rollups
Microsoft Exchange Server 2019 CU9:
The Exchange team has announced the availability of the most recent quarterly servicing update to Exchange Server 2019. Cumulative Update 9 includes fixes for customer-reported issues, minor product enhancements, and previously released security bulletins. A complete list of issues resolved in Exchange Server 2019 Cumulative Update 9 can be found in Knowledge Base Article KB4602570.
Microsoft Exchange Server 2016 CU20:
The Exchange team has also announced the availability of Cumulative Update 20 for Exchange Server 2016. CU20 includes fixes for customer-reported issues, minor product enhancements, and previously released security bulletins. A complete list of issues resolved in Exchange Server 2016 Cumulative Update 20 can be found in Knowledge Base Article KB4602569.
Microsoft Exchange Server 2013 CU23:
The Exchange team has also announced the availability of Cumulative Update 23 for Exchange Server 2013. CU23 includes fixes for customer-reported issues, minor product enhancements, and previously released security bulletins. A complete list of issues resolved in Exchange Server 2013 Cumulative Update 23 can be found in Knowledge Base Article KB4489622.
Microsoft Exchange Server 2010 SP3 RU32:
The Exchange team announced the availability of Release Update 32 for Exchange Server 2010 SP3. A complete list of issues resolved in Exchange Server 2010 Security Update can be found in Release Update 31 – Knowledge Base Article KB45000978.