On-premises Exchange Server Vulnerability

On-premises Exchange servers are still out there and they make great targets for threat actors, especially those with unpatched flaws.

There is a new PowerShell based malware called PowerExchange and being linked to an Iranian threat group APT34 that backdoors Microsoft Exchange servers.

New PowerExchange malware backdoors Microsoft Exchange servers (bleepingcomputer.com)

Octagon’s IT Monitoring software can help with keeping an eye on updates and patches.

Clive Catton MSc (Cyber Security) – by-line and other articles

My advice: Either you or your IT support need to check whether these issues impact your systems. You need to have a master document that details your systems, hardware, software, online, networks, back-ups, suppliers etc – so when cyber security (or operational) issues arise you and your support teams can quickly check if you are affected. From there you can take fast, effective action.

Further Reading