Microsoft says 92% of vulnerable Exchange servers patched, mitigated | Tech News

Microsoft says 92% of vulnerable Exchange servers patched, mitigated

Microsoft says there’s a strong momentum for on-premises Exchange Server updates.

| Updated on: Aug 21 2022, 16:01 IST
Microsoft recently updated Defender Antivirus to mitigate Exchange server vulnerabilities
Microsoft recently updated Defender Antivirus to mitigate Exchange server vulnerabilities (Reuters)

Following the discovery of Exchange server vulnerabilities, Microsoft had scrambled to release emergency patches. The initial patches were released for Exchange Server 2019, Server 2016, and Server 2013. The company acknowledged that the vulnerabilities were being used by cybercriminals for limited and targeted attacks.

Apart from patches, Microsoft also introduced a slew of mitigation tools. Just recently, it updated Microsoft Defender Antivirus to prevent critical vulnerabilities. Microsoft said the update would automatically block the CVE-2021-26855, one of the four vulnerabilities used for cyberattacks.

You may be interested in

MobilesTablets Laptops
7% OFF
Apple iPhone 15 Pro Max
  • Black Titanium
  • 8 GB RAM
  • 256 GB Storage
23% OFF
Samsung Galaxy S23 Ultra 5G
  • Green
  • 12 GB RAM
  • 256 GB Storage
Google Pixel 8 Pro
  • Obsidian
  • 12 GB RAM
  • 128 GB Storage
Apple iPhone 15 Plus
  • Black
  • 6 GB RAM
  • 128 GB Storage

“The Exchange security update is still the most comprehensive way to protect your servers from these attacks and others fixed in earlier releases. This interim mitigation is designed to help protect customers while they take the time to implement the latest Exchange Cumulative Update for their version of Exchange,” the company had said.

Also read
Looking for a smartphone? To check mobile finder click here.

According to reports, the Exchange server vulnerabilities were being used to target firms and organisations globally. Check Point Research said that a total of 32 firms in India were targeted. Researchers further revealed that the finance and the banking sector was the worst hit with 28% of the hacks followed by government and military (16%), manufacturing (12.5%), insurance and legal (9.5%). All other industries constituted the remaining 34%.

Despite the patches and mitigation tools, the Exchange server vulnerabilities may leave lasting damage. Microsoft has also acknowledged that patching a system does not necessarily remove the access of the attacker.

"Many of the compromised systems have not yet received a secondary action, such as human-operated ransomware attacks or data exfiltration, indicating attackers could be establishing and keeping their access for potential later actions," the Microsoft 365 Defender Threat Intelligence Team said in a post.

Catch all the Latest Tech News, Mobile News, Laptop News, Gaming news, Wearables News , How To News, also keep up with us on Whatsapp channel,Twitter, Facebook, Google News, and Instagram. For our latest videos, subscribe to our YouTube channel.

First Published Date: 28 Mar, 11:30 IST