• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Home
  • News
  • Classifieds
  • Financial
  • Food
  • Life & Culture
  • Politics
  • Vent Line
  • Contact

The Genesee Journal

Mid-Michigan Living

Cyber Security Alert: Significant Microsoft Exchange Vulnerabilities Identified

Cyber Security Alert: Significant Microsoft Exchange Vulnerabilities Identified

March 9, 2021 by GJ Staff Leave a Comment

The Michigan State Police (MSP) Michigan Cyber Command Center (MC3) is warning entities who host on-premises Microsoft Exchange servers of a newly identified, significant, and active threat to network security. Microsoft Exchange is a platform used to host email services for many businesses and enterprises.

Last week, security researchers uncovered multiple vulnerabilities with on-premises Exchange servers and Microsoft released patches to fix the vulnerabilities. Prior to patches being available, malicious actors had begun to exploit the vulnerabilities. Any organization hosting an on-premises Exchange server that has not been updated has a high likelihood of already being victimized. 

Cloud-based Microsoft email is not affected by these vulnerabilities. 

As recommended by Microsoft and the Cybersecurity & Infrastructure Security Agency (CISA), the MC3 strongly encourages any agency utilizing an on-premise Microsoft Exchange server to take immediate action to install the patches and then work with their information technology team to investigate any potential unauthorized access to their servers. 

The vulnerabilities allow a remote attacker to access vulnerable email servers, the emails stored on them, allow for the installation of additional malware, harvest passwords, and facilitate long-term access to victim environments. Additional information about this vulnerability can be found at https://www.cisa.gov/ed2102 and https://www.microsoft.com/security/blog/2021/03/02/hafnium-targeting-exchange-servers/.

Any entity in Michigan with evidence of a compromise related to this vulnerability or other malware activity is requested to report it to the MC3 at 877-MI-CYBER or the FBI’s Internet Crime Complaint Center at www.ic3.gov.

Filed Under: Press Releases

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recipe Rating




Primary Sidebar

Culvers on Miller Rd

Recent Ventlines

  • Julie said Well I was pre-approved for 250,000. Now I’m only approved f...
  • Steve said Wish I could have stored some barrels of oil from when covid...
  • Sarah said From the time I started looking for a few months ago until t...
  • John said So Happy that is seems that covid is finally over
  • Jim said Can I financem y next gas fill up
  • Madison said Could you please forward to me as well? I can’t find it on t...
  • Adrienne said I feel terrible for the family members of the four year old...
  • Jennifer said I hope the Shiawassee assistant prosecutor has learned a les...
  • Debra said I am so confused about what to do for the holidays. Fauci wa...
  • Joe said I heard and felt the explosion yesterday. It was terrifying!...

Copyright © 2022 · GeneseeJournal.com · All Rights Reserved.