The Government Communications Headquarters (GCHQ) has issued a warning to all UK businesses who use Microsoft email servers, also known as Microsoft Exchange.
Microsoft released information regarding multiple groups taking advantage of a hack of its clients’ on-premise email servers. Microsoft was made aware of this in January and released a patch for this at the beginning of March, which means if you have your email servers on premise, your email servers could be at risk. This security update impacts on-premise Exchange Server 2013, Exchange Server 2016 and Exchange Server 2019. However, Exchange Online is not affected. If your email servers are breached with this hack, this could lead to Remote Code Execution (RCE), server hijacking, backdoors, data theft, and potentially further malware deployment, impacting your business financially.
Security officials believe there could be up to 8,000 vulnerable Microsoft servers in the country’s private sector, although they estimate roughly half of these may have been patched. Microsoft has urged IT administrators and customers to apply the security fixes immediately. However, just because fixes are applied now, this does not mean that servers have not already been backdoored or otherwise compromised.
Has your IT support provider contacted you regarding this security update? Has this urgent update been done on your email servers? If the answer is no, then Contact Switch My Server to see how they can help you and make the Switch.