Test

Testing 123 Link

Test

Testing 123 Link

Header

CISA alerts federal agencies on Microsoft Exchange Server vulnerabilities. Chinese hacking group looking to exploit the weakness.

Thursday, March 4, 2021 7:28am

CISA alerts federal agencies on Microsoft Exchange Server vulnerabilities.  Chinese hacking group looking to exploit the weakness.

Add to calendar

Cybersecurity and Infrastructure Security (CISA) partners have observed active exploitation of vulnerabilities in Microsoft Exchange Server products. Successful exploitation of these vulnerabilities allows an unauthenticated attacker to execute arbitrary code on vulnerable Exchange Servers, enabling the attacker to gain persistent system access, as well as access to files and mailboxes on the server and to credentials stored on that system. Successful exploitation may additionally enable the attacker to compromise trust and identity in a vulnerable network. Microsoft released out-of-band patches to address vulnerabilities in Microsoft Exchange Server. The vulnerabilities impact on-premises Microsoft Exchange Servers and are not known to impact Exchange Online or Microsoft 365 (formerly O365) cloud email services.

https://us-cert.cisa.gov/ncas/alerts/aa21-062a

https://thehill.com/policy/cybersecurity/541489-federal-agencies-ordered-to-patch-systems-after-microsoft-finds-security?&web_view=true

Event Details