Check to see if you’re vulnerable to Microsoft Exchange Server zero-days using this tool | WHAT REALLY HAPPENED

Check to see if you’re vulnerable to Microsoft Exchange Server zero-days using this tool

Microsoft's Exchange Server team has released a script for IT admins to check if systems are vulnerable to recently-disclosed zero-day bugs.

As noted in an alert published by the US Cybersecurity and Infrastructure Security Agency (CISA) on Saturday, Microsoft's team has published a script on GitHub that can check the security status of Exchange servers.

The script has been updated to include indicators of compromise (IOCs) linked to four zero-day vulnerabilities found in Microsoft Exchange Server.

On March 2, the tech giant warned of the active exploit of the zero-days by a state-sponsored Chinese threat group called Hafnium. FireEye's Mandiant Managed Defense team has also tracked ongoing attacks against US organizations leveraging the bugs. So far, victims include local government entities, a university, and retailers.

Comments

SHARE THIS ARTICLE WITH YOUR SOCIAL MEDIA