Social networks
Awards
MVP:
2013 – 2016
WIMVP:
2017 – 2020
Tag Archives: Exchange
PoC for Microsoft Exchange bug discovered by NSA public
[German]Various security vulnerabilities in Microsoft Exchange were discovered by the US intelligence agency NSA and reported to Microsoft. Microsoft closed these vulnerabilities in April 2020 with corresponding updates. As a "reminder for the weekend", we would like to point out … Continue reading
Exchange Update errors and information (April 13, 2021)
[German]The security updates for Microsoft Exchange released on April 13, 2021 was installable without problems for most users. However, there were isolated reports of problems, which I briefly summarize here.
Exchange Server Security Update KB5001779 (April 13, 2021)
[German]As expected, Microsoft has released security updates for Exchange Server 2013, Exchange Server 2016 and Exchange Server 2019 on April 13, 2021 (Patchday). These are intended to close vulnerabilities found that were reported by security companies. Prompt installation is recommended … Continue reading
PSA: Watch your Exchange Patch status – 0 day vulnerabilities found, is the next Exchange disaster in sight?
[German]Ok, I think I got your attention with the headline. From what I heard, next Tuesday there will be some updates for Exchange Server. Why? Because three Exchange exploits were presented at the hacker conference Pwd2Own (6-8.4-2021). Maybe it would … Continue reading
Exchange hack news: What's about risk? (April 1, 2021)
[German]What is the threat situation at the end of March 2021 with regard to on-premises Exchange Server and the exploitation of the vulnerabilities that became known at the beginning of March 2021? Microsoft has provided analyses of which ransomware groups … Continue reading
Why ISL Online: Critical factors when choosing a remote desktop solution
[Sponsored Post]In the rapidly evolving IT world, choosing the right remote desktop software is critical for organizations that value security, ease of use and reliability. One provider of secure remote access that has been on the market since 2001 is ISL Online, which presents some considerations for choosing such software below. More ...
Exchange ProxyLogon News: Patch status, new PoC and new findings (03/18/2021)
[German]Regarding the Exchange ProxyLogon vulnerabilities and the mass hack of Exchange Server systems, there is a publicly available proof of concept (PoC), so new attacks are to be expected. Patching and securing is progressing slowly. Microsoft's testing scripts should be … Continue reading
Security update for Exchange Server 2013 SP1; CUs for Exchange 2019 and 2016 (03/16/2021)
[German]Microsoft released a security advisory to revise its outdated updates for older CUs for on-premises Microsoft Exchange Servers (which have already fallen out of support). Specifically, Microsoft has released a security update for the out-of-support Microsoft Exchange Server 2013 Service … Continue reading
Microsoft Exchange (On-Premises) one-click Mitigation Tool (EOMT) released
[German]Microsoft has released its onclick Microsoft Exchange (On-Premises) Mitigation Tool (EOMT) as of March 15, 2021. The tool is intended to provide a one-click solution to mitigate the CVE-2021-26855 chess vulnerability on on-premises Exchange Server installations and is primarily intended … Continue reading
ProxyLogon hack: Administrator's Repository for affected Exchange systems
[German]What can I do as an Exchange Server administrator in light of the ongoing waves of attacks on ProxyLogon vulnerabilities? What do I need to be aware of? How do I find out if instances are already compromised? The repository … Continue reading
Was there a leak at Microsoft in the Exchange mass hack?
[German]The first wave of mass hacking of vulnerable Exchange servers before the release of patches raises questions. Especially since the exploit code used was very similar to a PoC that Microsoft had distributed to partners a week earlier. Microsoft is … Continue reading