- What is the Microsoft Exchange Server Hack?
- How do I know if I’ve been affected by the Microsoft Exchange Server Hack?
- What can I do if I am affected by the Microsoft Exchange Server Hack?
Last week Microsoft announced that a hacker group known as Hafnium had conducted a “limited and targeted” attack against on-premises Microsoft Exchange servers. To all intents and purposes Microsoft seemed to be indicating that the situation was under control, but now there are reports of thousands of servers having been compromised. So, for many businesses still using on-premise Exchange Servers the above three questions may well be very important right now, and in particular questions 2 and 3.
In regards to question 2, identifying if you have been affected by the Microsoft Server hack is something that an expert IT support provider needs to do, as Microsoft has published a “script”, available on GitHub that should be able to conduct a check of your Exchange server’s security status (i.e.: are there any indicators of the server having been compromised?).
The short answer to question 3 is “get professional help”. If your business is still using an on-premise Microsoft Exchange Server your IT service provider should have ensured that it has been patched accordingly (using security updates available from Microsoft). If they haven’t you need to act now, by contacting your IT service provider, or an IT support company that you can trust to help you.
Labyrinth Technology is available on 020 3790 7500 if you need help or advice on what you need to do, or if you are considering moving to Exchange Online, which has not been affected by the Microsoft Exchange Server Hack.