Microsoft released security updates for 114 common vulnerabilities and exposures in its software products, while also publishing a supplementary note urging organizations to apply the new April Exchange Server "Critical" patches "as soon as possible."
A key part of an organization's ransomware-prevention strategy is creating Exchange mail flow rules that take action against messages that are likely to contain ransomware.
Microsoft on Thursday published a comprehensive description of the Exchange Server attack methods currently taking advantage of four zero-day flaws in those products, and offered extensive advice.
Microsoft on Thursday clarified that organizations running Exchange Server can get automatic security mitigations against Hafnium attacks via Microsoft Defender Antivirus.
The Microsoft Security Response Center team on Tuesday issued "Guidance for Responders," which provides more advice on how organizations can respond to the recent attacks that are leveraging Exchange Server zero-day flaws.
Microsoft on Tuesday announced the release of a one-click tool to apply temporary security protections against the recent Exchange Server attacks from the "Hafnium" advanced persistent threat group and other attackers.
Exchange Servers are getting attacked to install ransomware, dubbed "DearCry," Microsoft warned on Thursday.
The U.S. Cybersecurity and Infrastructure Security Agency and the Federal Bureau of Investigation announced a Microsoft Exchange Server joint advisory that offers consolidated advice for Exchange Server users on detecting Hafnium attacks.
Microsoft has updated its recommendations to organizations running Exchange Server, targeted in Hafnium nation-state attacks, by describing some new resources.
Microsoft on Tuesday released out-of-band security patches for Exchange Server to address multiple zero-day flaws that are currently being exploited in active attacks.
Microsoft on Thursday announced an update to its plans to end "Basic Authentication" when used with the Exchange Online e-mail service.
Microsoft announced last week in an Exchange Teams post and in at least one Ignite session that it will offer new application server products next year, but only via subscription-based licensing models.
With a new Cortana feature, Microsoft brushes off one of its old ideas for helping Outlook users stick to their tasks and answer their e-mails.
Microsoft is now planning to disable Basic Authentication use with its Exchange Online service sometime in the "second half of 2021," according to a Friday announcement.
Microsoft on Tuesday offered more details on its plans to end Basic Authentication in Exchange Online, which will cause pain for some organizations.