Microsoft Announce Critical Security Update for Microsoft Exchange

Published: 9 March 2021

On March 2nd Microsoft announced that four critical security vulnerabilities had been identified in Microsoft Exchange Server versions 2013 to 2019. Recently released data shows that these vulnerabilities may have been actively exploited since January 2021 and current estimates are that 30,000 organisations in the United States alone, may have been impacted.

To mitigate further risk of exploitation, our technical support teams are pro-actively contacting potentially impacted clients to arrange for essential security updates to be applied. If you are running an on-premise version of Microsoft Exchange and you haven’t heard from us, please contact our technical support team (https://support.xperience-group.com) for further assistance.

Security as a Service Clients – Cisco released updated threat detection rule sets on March 3rd, which were automatically deployed to our Security as a Service Platforms. Our Security Teams continue to monitor the situation and further defensive measures will be deployed as required.

Microsoft Office 365 Users – Microsoft has confirmed that Exchange Online services are not affected by these vulnerabilities.

If you’re concerned about the impact of this incident, or should you wish to enquire about our comprehensive security solutions, please contact your client account manager or click here to request a call back.

Microsoft Support Articles
HAFNIUM targeting Exchange Servers with 0-day exploits
Microsoft Exchange Server Vulnerabilities Mitigations
March 2021 Exchange Server Security Updates

Read More

Effectively managing your Client relationships in Constructi...

29 May 2023

Effectively managing your client relationships could make all the difference in the success of your business.

Global IT Spend set to grow in 2023

18 May 2023

With the tech market continuing to grow, it's no surprise the global IT spend is set to continue to grow in 2023. Find out more in our blog.

The Importance of Cyber Security Training for Employees  

18 May 2023

Your employees are often the last line of defence for your business, that's why providing cyber security training is essential.

Why Data Security is crucial for ERP users

17 May 2023

ERP systems hold some of the most sensitive data in your business, find out more about data security in ERP and why its so important.

Using AI with the Cloud to transform your business

12 May 2023

Read more...