Exactly ten days ago we were talking about the vulnerabilities of Microsoft Exchange servers, recently under the attack of the groups of hackers Hafnium and some others not better identified. The company initially released a simple tool to try to decrease the risk of attacks on vulnerable servers and only today, through a post, has it announced that it has corrected the flaw identified by the code CVE-2021-26855 :
“Now Microsoft Defender Antivirus is able to recognize and repair this flaw on the servers that are affected completely automatically and users will only have to make sure to update the program to the latest version (build 1.333.747.0 or more recent), if they have not enabled the automatic updates “. Microsoft reiterates how important this fix is as CVE-2021-26855 was one of four vulnerabilities linked to the attack suffered by Exchange and that the “ Security Update “are the best way to protect your servers.
These are currently the most effective way to protect servers from the most recent attacks and those already thwarted in the past, while new reports highlight how the hackers protagonists are increasing attacks on vulnerable servers, therefore if you are users of Microsoft Exchange Server , the always valid advice is to check your systems to be sure that you have been affected or not and, if necessary, take the appropriate measures.
