Microsoft Urges Customers to Secure On-Premises Exchange Servers


Microsoft advises users to maintain their Exchange servers up to date as well as take precautions such turning on Windows Extended Protection and setting up certificate-based signing of PowerShell serialization payloads. Attackers attempting to take advantage of unpatched Exchange servers won’t stop, “The Exchange Team of the tech behemoth stated in a statement. “Unpatched on-premises Exchange installations have too many features that can be used by malevolent parties to steal data or carry out other nefarious deeds. Microsoft also noted that the mitigations it has released are only a temporary fix and may “become inadequate to guard against all permutations of an attack,” requiring users to apply the required security upgrades in order to secure the servers.

Read More…