Statement on Microsoft Exchange vulnerabilities

micosoft hack

Share This Post

Share on facebook
Share on linkedin
Share on twitter
Share on email

Microsoft released security updates for Microsoft (MS) Exchange server suite. Active exploitation has been observed on-premises running MS Exchange installations.

MS Exchange vulnerabilities once exploited may lead to network compromise, data exfiltration and ransomware attacks. Across the EU, an increasing number of MS Exchange installations have also been found to be the target of malicious attacks.

ENISA published a situation report which provides an assessment as well as advice and mitigation measures. It reports that threat has been assessed as severe and considers these types of attacks probable and of high risk.

The Agency calls on organisations using affected Microsoft Exchange versions to patch the flaws immediately and thoroughly investigate for potential signs of compromise.

At EU level, the EU CSIRTs Network and EU Cyber Crises Liaison Organisation Network (CyCLONe) are monitoring the situation and collecting information at both the technical and operational levels.

Microsoft is updating advisories and guidance while additional technical information and advice are provided by CERT-EU technical advisory.

Background

The EU Agency for Cybersecurity supports operational cooperation among Member States, Union institutions, bodies, offices and agencies, and between stakeholders. Under the EU Cybersecurity Act of 2019, the Agency gained an extended mandate to contribute to developing a cooperative response at Union and Member States level to large-scale cross-border incidents or crises related to cybersecurity.

ENISA provides the secretariat of the EU CSIRTs Network and CyCLONe, supporting their work by offering advice and assistance. The Agencyprovides strategic foresight and intelligence on cyber threats. The Agency contributes to situational awareness and shares knowledge and information with relevant stakeholders and investigates solutions to boost the efficiency of cyber responses in critical industries across Europe.

The CSIRTs Network is a network composed of EU Member States’ appointed CSIRTs and CERT-EU. The European Commission participates in the network as an observer and ENISA acts as the secretariat. The CSIRTs Network contributes to developing confidence and trust between the Member States and to promoting swift and effective operational cooperation.

The Cyber Crisis Liaison Organisation Network (CyCLONe) contributes to the implementation of the European Commission’s Blueprint for rapid emergency response in case of a large-scale cross-border cyber incident or crisis and complements the existing cybersecurity structures at EU level by linking the cooperation at technical (e.g. Computer Security Incident Response Team – CSIRTs) and political levels (e.g. Integrated Political Crisis Response – IPCR). By doing so, the CyCLONe fulfils two objectives: enabling consultations on national response strategies and coordinated impact assessment on the anticipated or observed impacts of a crisis, to the benefit of policy decision-makers, both at national and EU level.

CERT-EU and ENISA have signed a memorandum of understanding in 2021 to improve the efficiency and the effectiveness of the EU cybersecurity framework.

Subscribe To Our Newsletter

More To Explore

website creation
Internet

10 Attributes to a Good Website

What’s the one thing that can make your business bigger than ever? The answer is- ‘having a good online presence’. And how do you create

iphone security
Computer, Internet Security

Mettez à jour vos iPhone, Mac et iPad !

Apple prévient que des failles sont peut-être exploitées Apple diffuse une série de correctifs pour iOS 14.5, mais aussi pour macOS Big Sur et l’Apple

Wanna take it to the next level?

drop us a line and let's get started

We're Here To help

Feel free to contact us, and we’ll be more than happy to answer all of your questions.

a2Da Digital

a2Da Digital is a brand of a2Da Enterprises

ERHUB
Ahtri 12
10151 Tallinn, Estonia

[email protected]

+372 712 4283
Hours : 08:00 to 18:00 Mon – Fri
Support 24×7 Submit a Ticket Here
Registered in Tallinn, EE : 14740580
VAT : EE102279616

Secured BACKUP

Nothing is more important than having your data available at all times, wherever you are, whatever you do.

At a2Da Digital we provide real time backup of your data, and because your data belongs to you, you are the only one able to use it. No advertising, no reading your documents to propose targeted advertising! It’s your data and only yours!

And because it is important that your documents are really safe, they go through our award-winning anti virus systems so you don’t backup viruses as well!

We use SYNOLOGY world-renowned backup servers to guarantee the integrity of your data, and back up the backup as a fail-safe.

You use several terminals (desktop, laptop, telephone, tablet)? You can use our system as a centralized repository of your documents so everything is synchronized in real time and available to you no matter the terminal.

Our company is a collective of amazing people striving to build solutions you need.

Actual people, easy to contact and who know what they are doing, these are the members of the team you will deal with. We all speak French and English, have an engineer level not matter the position and will be able to answer all your questions as quickly as possible. Just drop an email at [email protected] with your question.

We have both eyes on our equipment, update and maintain it ourselves 24/7 and have constructed an architecture that we believe is sound, secured, efficient and cost effective.