If you’ve migrated to Exchange Online, make sure you stop publishing your Exchange Servers to the internet. After a standard Hybrid migration, you still might be reliant on Exchange Server and in this article you can find out why and how to move remaining web services to Microsoft 365.
It’s often helpful when security researchers like Guardicore shed light on flaws in Microsoft Exchange – however, the Autodiscover protocol isn’t flawed in the way they describe. Even though the issue is hard to replicate, it shouldn’t distract from the work you need to do to protect your organization from the underlying reason why people want your credentials.
It has been a tiring year for Exchange on-premises and hybrid administrators and unfortunately, it’s not getting any easier. The HAFNIUM exploits cast a negative light on Microsoft Exchange, re-emphasizing why email is a crucial part of any organization and that nothing and no one is exempt from an attack. Find out why and what you can do to protect your organization NOW.
Microsoft’s Exchange Server woes continued when the online copy of the Hybrid Configuration Wizard was hijacked and replaced by a text file. The problem is now fixed, but it underlines the need for vigilance in all parts of the Microsoft 365 ecosystem.
Microsoft has issued critical security updates for Exchange on-premises servers. The fixes close off four known vulnerabilities which expose Exchange to day-zero attacks. It’s important to apply these updates ASAP.