The NSA, CISA, Australia's Cyber Security Centre, and Canada's Cyber Centre jointly released comprehensive security practices for Exchange hardening.

The best-practices guide comes two months after CISA and Microsoft warned of a high-severity vulnerability in Exchange Server ...

‘Attackers are actively scanning for vulnerable Microsoft Exchange servers and abusing the latest line of Microsoft Exchange vulnerabilities that were patched earlier this year,’ says Huntress threat ...

The combination of Squirrelwaffle, ProxyLogon, and ProxyShell against Microsoft Exchange Servers is being used to conduct financial fraud through email hijacking. On Tuesday, researchers from Sophos ...

One (CVE-2022-41040) is a is a Server-Side Request Forgery (SSRF) vulnerability, an exploit that allows attackers to make server-side application requests from an unintended location – for example, ...

Microsoft has released Customer Guidance for Reported Zero-day Vulnerabilities in Microsoft Exchange Server. According to the blog post, “Microsoft is aware of limited targeted attacks using the two ...

Microsoft Teams and Outlook were hit outages - Copyright AFP/File Fabrice COFFRINI Microsoft Teams and Outlook were hit outages - Copyright AFP/File Fabrice COFFRINI ...

Microsoft has released its May set of security patches, fixing critical bugs in Windows, Office and Exchange. The Exchange update fixes previously undisclosed flaws in Microsoft’s messaging software ...

Microsoft recently acknowledged a vulnerability affecting its email and calendar service Exchange that could allow an attacker to gain significant control over particular organizations' email servers ...

"This isn't the worst month of the year so far," said Mike Murray, the director of research at vulnerability management vendor nCircle, even though the vulnerability/patch count is two more than the ...

Microsoft Corp. confirmed late Thursday that two unpatched Exchange Server vulnerabilities exist and that they’re currently being exploited in the wild by unknown attackers. The attacks were ...

Microsoft Corp. today released a fix for a critical vulnerability in Exchange Server as part of its monthly Patch Tuesday release. The Exchange Server vulnerability addressed was officially named ...