Some good news – Messageware’s quarterly newsletter is here, and surely that means 2020 is winding down…
Server Security – Update:
We enjoy when companies discuss Exchange Server attacks with us as it allows us to share their stories with you, and drives our product development. Recently, we had several investigations into brute-force attacks – password guessing. Brute Force leads to server resource overloads, AD user account lockouts, and stolen credentials. But, as security is put in place to stop these attacks, we’ve seen the attacks change in an attempt to avoid triggering attention.
Smart, low volume attacks (LVA) are much newer and have no time limits – like cracking a safe, patiently waiting for each pin to click into place so the door can be swung open. Employing low-volume attacks isn’t all that different from a brute force attack. Imagine a list of 1,000 email addresses and just a few password guesses per day targeting each of the 1,000 users. Within a matter of months, more than 300,000 logins (3 tries x 1,000 users x 100 days) have been attempted without triggering any significant security warnings.
Fortunately, the upcoming version of Messageware’s Exchange Protocol Guard (EPG v3.4) includes protection for and identification of low-volume attacks (anti-LVA). What’s even better is that the protection is across all our Exchange Server protected protocols. Whether you have 2FA/MFA or just Messageware, we make Exchange Servers more Secure (https://www.messageware.com/epg/).
Outlook Web on Desktops – Update:
Last quarter, I announced new versions of both Messageware ActiveSend and OWA Desktop — two products that are perfect for Office 365 E and F tenants where staff use Outlook Web regularly, but need an Outlook-like experience. Since then, we’ve created two short videos to show you how ActiveSend and OWA Desktop produce a more Outlook-like experience for your users.
Exchange 2022 – Microsoft Ignite
In September news, Microsoft announced the next versions of Exchange Server at this year’s Ignite. While the next Exchange version has no official name yet, it will be delivered an in-place upgrade to Exchange 2019. This is great news for organizations with secured on-premises environments.
Microsoft CU’s for Exchange 2019,16,13,10 Servers
Quarterly Microsoft CUs (cumulative updates) have been released for Exchange 2016 and 2019. As always, we have included the links below to the Microsoft Updates and matching Messageware releases.
Wishing you the very best,
President and CEO
Latest Cumulative Updates and Rollups
Microsoft Exchange Server 2019 CU7:
The Exchange team has announced the availability of the most recent quarterly servicing update to Exchange Server 2019. Cumulative Update 7 includes fixes for customer reported issues, minor product enhancements, and previously released security bulletins. This Knowledge Base Article contains a complete list of issues resolved in Exchange Server 2019 Cumulative Update 7.
Microsoft Exchange Server 2016 CU18:
The Exchange team has also announced the availability of Cumulative Update 18 for Exchange Server 2016. CU18 includes fixes for customer reported issues, minor product enhancements, and previously released security bulletins. A complete list of issues resolved in Exchange Server 2016 Cumulative Update 18 can be found in Knowledge Base Article KB4571788.
Microsoft Exchange Server 2013 CU23:
The Exchange team has also announced the availability of Cumulative Update 23 for Exchange Server 2013. CU23 includes fixes for customer reported issues, minor product enhancements, and previously released security bulletins. A complete list of issues resolved in Exchange Server 2013 Cumulative Update 23 can be found in Knowledge Base Article KB4489622.
Microsoft Exchange Server 2010 SP3 UR30:
The Exchange team announced the availability of Update Rollup 30 for Exchange Server 2010 SP3. A complete list of issues resolved in Exchange Server 2010 Security Update can be found in Rollup 30 – Knowledge Base Article KB4536989.