Research Blaze.
  • Home
    • Home – Layout 1
    • Home – Layout 2
    • Home – Layout 3
  • News
  • Technology
    Facebook and Instagram on the Verge of shutting down in Europe; What actually happened?

    Facebook and Instagram on the Verge of shutting down in Europe; What actually happened?

    Twitter users can now test the Downvote feature Worldwide

    Twitter users can now test the Downvote feature Worldwide

    Raspberry Pi 64-bit OS rolls out stable version; Everything to know

    Raspberry Pi 64-bit OS rolls out stable version; Everything to know

    PlayStation and Discord integration has started to Roll Out, Everything to know

    PlayStation and Discord integration has started to Roll Out, Everything to know

    Yoshinori Kitase CONFIRMS Final Fantasy 7 Remake Part 2 Reveal Might Come in Late 2022

    Yoshinori Kitase CONFIRMS Final Fantasy 7 Remake Part 2 Reveal Might Come in Late 2022

    What is Play Station State of Play? Everything to Know

    What is Play Station State of Play? Everything to Know

    Redesigned iMac Pro, New AirPods Pro, and More Launching in 2022 according to Mark Gurman

    Redesigned iMac Pro, New AirPods Pro, and More Launching in 2022 according to Mark Gurman

    Facebook and Google might soon get ordered to PAY TO ADVERTISE for fairer competition

    Facebook and Google might soon get ordered to PAY TO ADVERTISE for fairer competition

    The “Fastest AI supercomputer” will be made by Meta and Nvidia deal Claims Mark Zuckerberg

    The “Fastest AI supercomputer” will be made by Meta and Nvidia deal Claims Mark Zuckerberg

  • Gadget
    Elon Musk NEARING towards Human Trials for his Neuralink Brain Implant Chips

    Elon Musk NEARING towards Human Trials for his Neuralink Brain Implant Chips

  • Design
No Result
View All Result
Research Blaze.
  • Home
    • Home – Layout 1
    • Home – Layout 2
    • Home – Layout 3
  • News
  • Technology
    Facebook and Instagram on the Verge of shutting down in Europe; What actually happened?

    Facebook and Instagram on the Verge of shutting down in Europe; What actually happened?

    Twitter users can now test the Downvote feature Worldwide

    Twitter users can now test the Downvote feature Worldwide

    Raspberry Pi 64-bit OS rolls out stable version; Everything to know

    Raspberry Pi 64-bit OS rolls out stable version; Everything to know

    PlayStation and Discord integration has started to Roll Out, Everything to know

    PlayStation and Discord integration has started to Roll Out, Everything to know

    Yoshinori Kitase CONFIRMS Final Fantasy 7 Remake Part 2 Reveal Might Come in Late 2022

    Yoshinori Kitase CONFIRMS Final Fantasy 7 Remake Part 2 Reveal Might Come in Late 2022

    What is Play Station State of Play? Everything to Know

    What is Play Station State of Play? Everything to Know

    Redesigned iMac Pro, New AirPods Pro, and More Launching in 2022 according to Mark Gurman

    Redesigned iMac Pro, New AirPods Pro, and More Launching in 2022 according to Mark Gurman

    Facebook and Google might soon get ordered to PAY TO ADVERTISE for fairer competition

    Facebook and Google might soon get ordered to PAY TO ADVERTISE for fairer competition

    The “Fastest AI supercomputer” will be made by Meta and Nvidia deal Claims Mark Zuckerberg

    The “Fastest AI supercomputer” will be made by Meta and Nvidia deal Claims Mark Zuckerberg

  • Gadget
    Elon Musk NEARING towards Human Trials for his Neuralink Brain Implant Chips

    Elon Musk NEARING towards Human Trials for his Neuralink Brain Implant Chips

  • Design
No Result
View All Result
Research Blaze.
No Result
View All Result

Microsoft Says That 92% OF Its Vulnerable Exchange Servers Are Now Patched And Mitigated.

MonkeyDLuffy by MonkeyDLuffy
April 2, 2021
in Innovation
0 0
0
Microsoft Says That 92% OF Its Vulnerable Exchange Servers Are Now Patched And Mitigated.
0
SHARES
0
VIEWS
Share on FacebookShare on Twitter

Microsoft stated that 92% of Exchange servers vulnerable to potential threats are now patched or measures have been taken to mitigate it.

The Security Response Team working on the issue said that there is ‘strong momentum’ in mitigation tools or patches and they’re being applied worldwide. As compared to last week, the improvement is 43%.

According to IT professionals, it is noteworthy that patching or mitigation of a pre-existing vulnerability does not protect servers that have already been compromised.

A complete check of the system is necessary to detect whether or not the server is exploited.

On 12th March, A Blog post was published on Microsoft’s website which goes like, ”To illustrate the scope of this attack and show the progress made in updating systems, we’ve been working with RiskIQ. Based on telemetry from RiskIQ, we saw a total universe of nearly 400,000 Exchange servers on March 1. By March 9 there were a bit more than 100,000 servers still vulnerable.” reads the post published by Microsoft. “That number has been dropping steadily, with only about 82,000 left to be updated. We released one additional set of updates on March 11, and with this, we have released updates covering more than 95% of all versions exposed on the Internet.”

 All of this started with Microsoft releasing emergency patches for Microsoft Exchange Server 2013, Exchange Server 2016, and Exchange Server 2019 on 2 of March.

During the release, the company received some red flags. Afterward, they stated that four zero-day vulnerabilities which could potentially lead to data theft and overall server hijacking were being actively exploited in “limited, targeted attacks.”

According to RiskIQ, this incident with Microsoft was unprecedented and it took place on an almost unfathomable scale.

To solve that, it required a well-coordinated ‘all in’ effort. RiskIQ has a unique relationship with Microsoft, they’re working with all sorts of different organizations. Like CERT teams, ISACSs, governments, banks, ISPs, healthcare organizations, and pharma on mass notification and incident response program.

According to welivesecurity, on 2nd March, they noticed that the vulnerabilities were being used by other threat actors. Starting with Tick and quickly joined by LuckyMouse, Calypso, and the Winnti Group.

This was suggestive of the fact that multiple threat actors gained access to the details of the vulnerabilities before the release of the patch.

After the release, many more threat actors were discovered by welivesecurity including Tonto Team and Mikroceen.

Along with the emergency patches being installed, Microsoft took more protective measures to curb the situation.

It has also published a mitigation guide and a one-click mitigation tool was created which includes a URL rewrite for one of the vulnerabilities. It will be beneficial in preventing an attack chain from being created.

Furthermore, Microsoft has also updated its Defender Antivirus with a feature of including automatic mitigation capabilities for the zero-day vulnerabilities.

F-Secure, a global cyber Security Company, argues that thousands of servers have been breached, and more being hacked at a rate faster than they can count.

It has become quite clear that existing infections are impossible to remove by applying mitigation or patches.

Therefore, despite patches and mitigations, the IT team should audit their systems and check their servers to get a clear idea of whether they’ve been exposed to threats prior to security up-gradation.

Previous Post

Asus Rog Phone 5 Leaves iPhone 12 And Galaxy S21 Playing Catch UP- Here’s How

Next Post

Github’s Latest Mobile App Releases! Now Supports Viewing And Downloading

MonkeyDLuffy

MonkeyDLuffy

Next Post
Github’s Latest Mobile App Releases! Now Supports Viewing And Downloading

Github's Latest Mobile App Releases! Now Supports Viewing And Downloading

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

You might also like

Facebook and Instagram on the Verge of shutting down in Europe; What actually happened?

Facebook and Instagram on the Verge of shutting down in Europe; What actually happened?

February 9, 2022
Hogwarts Legacy may finally release on this date CONFIRMED for PlayStation, Xbox and PC

Hogwarts Legacy may finally release on this date CONFIRMED for PlayStation, Xbox and PC

February 9, 2022
Twitter users can now test the Downvote feature Worldwide

Twitter users can now test the Downvote feature Worldwide

February 7, 2022
Raspberry Pi 64-bit OS rolls out stable version; Everything to know

Raspberry Pi 64-bit OS rolls out stable version; Everything to know

February 7, 2022
PlayStation and Discord integration has started to Roll Out, Everything to know

PlayStation and Discord integration has started to Roll Out, Everything to know

February 7, 2022
Know about All the New Games that are now Available with XBOX Game Pass in February 2022

Know about All the New Games that are now Available with XBOX Game Pass in February 2022

February 6, 2022
Research Blaze

We bring you the best Premium WordPress Themes that perfect for news, magazine, personal blog, etc. Check our landing page for details.

Tags

AirPods Pro Apple Apple Car Apple Watch ColorOS Discord Disney+ Elon Musk Facebook Final Fantasy Ghostwire Tokyo God of War Ragnarok Google Gran Turismo 7 H2O OS Halo Hogwarts Legacy iMac iMac Pro Instagram iOS iPhone Kiki Wolfkill MacBook Mark Gurman Mark Zuckerberg Meta Metaverse Netflix Neuralink Nvidia OnePlus OnePlus 10 Pro OPPO Paramount+ Play Station PlayStation Python Raspberry Pi Sony Tesla Twitter Xbox Yoshinori Kitase YouTube

Stay Connected

  • Home
  • News
  • Technology
  • Gadget
  • Design

© 2022 JNews - Premium WordPress news & magazine theme by Jegtheme.

No Result
View All Result
  • Home
    • Home – Layout 1
    • Home – Layout 2
    • Home – Layout 3
  • News
  • Technology
  • Gadget
  • Design

© 2022 JNews - Premium WordPress news & magazine theme by Jegtheme.

Welcome Back!

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Fill the forms below to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In