Symantec cybersecurity experts: The malware deployment is preceded by a reconnaissance with the AdFind tool. The victims are large organizations.
Microsoft released “One-Click Mitigation Tool” on Exchange Servers vulnerabilities, exploited by cybercrime. The cybersecurity experts: Customers will automatically mitigate CVE-2021-26855 on any server on which it is deployed. However, it’s not a replacement for the patch
Microsoft released “One-Click Mitigation Tool” to “help customers to secure their environments and respond to associated cybercrime threats from the recent Exchange Server on-premises attacks. It has been announced by the company itself. Cybersecurity experts explained that they have tested this tool across Exchange Server 2013, 2016, and 2019 deployments. This new tool is designed as an interim mitigation for customers who are unfamiliar with the patch/update process or who have not yet applied the on-premises Exchange security update. By downloading and running it, which includes the latest Microsoft Safety Scanner, customers will automatically mitigate CVE-2021-26855 on any Exchange server on which it is deployed. However, “this tool is not a replacement for the Exchange security update but is the fastest and easiest way to mitigate the highest risks to internet-connected, on-premises Exchange Servers prior to patching”.