Microsoft has announced that an extraordinary update has closed several security holes in its Exchange Server email software. These were exploited by suspected Chinese attackers. This is a new state-backed threat actor identified by the Microsoft Threat Intelligence Center and operating out of China.
The security gaps are so-called zero day gaps. This means that the security gaps were not known before the attacks were discovered and the attackers were probably specifically looking for them in order to exploit them for the attacks. If an attack is successful, email data is viewed and infected software is installed in the affected environment. The local Exchange Server 2013, 2016, 2019 and local Exchange instances in a hybrid environment with Exchange Online are currently affected by the vulnerability. Exchange Online is not affected.
ACT IMMEDIATELY!
We recommend that you act immediately to minimize the security risk. We will be happy to take care of installing the patches. Contact us at support@kutzschbach.de. We will contact you and immediately install the latest Exhange update for your local Exchange Server.
Read more about the security vulnerability here: https://www.heise.de/news/Jetzt-patchen-Angreifer-attackieren-Microsoft-Exchange-Server-5070309.html
