Cybersecurity, Microsoft releases a new bunch of security updates
They cover 55 issues in different products. Six of them are critical and have already been exploited by cybercrime actors.
Cybersecurity, new vulnerability for Exchange Server: PROXYTOKEN
Yoroi: The flaw, CVE-2021-33766, allows a threat actor to monitor, steal or alter corporate email communications.
Cybercrime, Microsoft released “One-Click Mitigation Tool” on Exchange Servers vulnerabilities
The cybersecurity experts: Customers will automatically mitigate CVE-2021-26855 on any server on which it is deployed. However, it’s not a replacement for the patch.
Cybercrime, the EBA hacked thanks to the Microsoft Exchange Server vulnerability
The EU Agency: The attack was limited and that the confidentiality of the systems and data has not been compromised.
Cyber Espionage, Microsoft released mitigation measures for Exchange server
However, the company warns: Are not a remediation, nor are they full protection against attack. The APTs threat is still active.
Cybersecurity, Update Microsoft Exchange Now!
Many state sponsored APTs are exploiting the 4 vulnerabilities, despite Microsoft patched them, to attack servers in USA, Europe, Asia and Middle East.
Cybersecurity, Microsoft patches the last 0-day Exchange Server vulnerabilities
They have been used by the China state-sponsored APT Hafnium for cyber espionage purpose against US. Update the systems now!