Microsoft Announce Critical Security Update for Microsoft Exchange

Published: 9 March 2021

On March 2nd Microsoft announced that four critical security vulnerabilities had been identified in Microsoft Exchange Server versions 2013 to 2019. Recently released data shows that these vulnerabilities may have been actively exploited since January 2021 and current estimates are that 30,000 organisations in the United States alone, may have been impacted.

To mitigate further risk of exploitation, our technical support teams are pro-actively contacting potentially impacted clients to arrange for essential security updates to be applied. If you are running an on-premise version of Microsoft Exchange and you haven’t heard from us, please contact our technical support team (https://support.xperience-group.com) for further assistance.

Security as a Service Clients – Cisco released updated threat detection rule sets on March 3rd, which were automatically deployed to our Security as a Service Platforms. Our Security Teams continue to monitor the situation and further defensive measures will be deployed as required.

Microsoft Office 365 Users – Microsoft has confirmed that Exchange Online services are not affected by these vulnerabilities.

If you’re concerned about the impact of this incident, or should you wish to enquire about our comprehensive security solutions, please contact your client account manager or click here to request a call back.

Microsoft Support Articles
HAFNIUM targeting Exchange Servers with 0-day exploits
Microsoft Exchange Server Vulnerabilities Mitigations
March 2021 Exchange Server Security Updates

Read More

Navigating Dynamics 365 Migration

30 November 2023

Our latest blog delves into how to ensure a successful migration to Dynamics 365

Xperience empowers 4Syte with Sage 200 for seamless data man...

30 November 2023

Our new client 4Syte upgrades to Sage 200 to handle large amounts of data

Ransomware – A threat to all organisations

29 November 2023

Our CTO takes a look at the reality of Ransomware and what you can do to protect your organisation

Summary of the NCSC’s latest report on Ransomware

15 November 2023

Explore the latest insights into the emergence of ransomware as a service (RasS)

Demystifying Dynamics 365 CRM Licensing

8 November 2023

Read more...