What You Need To Know About The Microsoft Exchange Hack

Working together with your IT staff to create proactive technology management solution

What You Need To Know About The Microsoft Exchange Hack

   Uncategorized    April 13, 2021  |  0

As Microsoft Partners, we have been following this news of the backdoor access hackers could exploit in Microsoft Exchange servers. Luckily, all of our clients have been in the cloud and Microsoft 365 customers for several years and thus are not affected by this vulnerability. However, it is estimated that 250,000 or more businesses were affected.   

Though Microsoft has offered a patch to shore up the vulnerability in the exchange servers, hackers may have already been able to install malicious software and secured access to your network without the back door.   Check out a video explaining the hack from DefenDesk founder, Chris Michalec below:

Here are four steps to follow if you think you may have been affected:   

1. Install the patch Microsoft issued.   

Microsoft made available an easy one-click mitigation tool you can use to close the back door into your exchange server. You can find the link to this tool here.   

2. Use Microsoft’s Security blog to learn how to see if you have been exposed.   

Microsoft released updated tools and investigation guidance to help IT Pros and incident response teams identify, remediate, defend against associated attacks: Guidance for responders: Investigating and remediating on-premises Exchange Server vulnerabilities.  

3. Take critical systems offline until you can be sure they are secured.   

Until you can get a team of cybersecurity professionals to assess any damage and remove any intrusions, you should take your critical systems offline. Every minute a hacker has inside your systems, they can be exfiltrating data, accessing your client’s information, or installing malware that can wreak havoc on your system or give them permanent access to your systems.   

4. Work with a cybersecurity team to re-secure your systems.   

Working with a trained cybersecurity professional is the only way to truly re-secure your systems and remove any damaging traces that the hacker was in your system. Unfortunately, cybersecurity professionals are in short supply. Not many people have the skill set, and those that do are often stretched thin and very busy.   

Even if You Weren’t Hacked, You Might Not Be Safe  

Though your business might not use Microsoft Exchange Servers, you might be the customer of a business that does. If any of your personal information was being stored by a vulnerable business, you need to be vigilant about any suspicious account log-in attempts and consider changing out some of your passwords to keep yourself secure.   

We hate to see news of significant hacks like this but know that this is the reality of operating in a digital world. The only way to stay protected is to be proactive and attentive to your system’s activity and alerts. We would be happy to hop on a call with you to discuss how we can help defend your business; click the button below.   

Book A Call

Leave a Reply

Your email address will not be published. Required fields are marked *

Recent Comments
    Categories

    © 2024 . Built using WordPress and Mesmerize Theme.