Home > News content

Microsoft publishes utility tools to help check whether the exchange server has been invaded by hafnium

via:cnBeta.COM     time:2021/3/7 8:02:06     readed:240

There are a series of defects in the independent installation of Microsoft Exchange server, which leads to a large-scale network security incident. Hundreds of thousands of exchange server installations have been hacked by hafnium.Krebson security reports that a large number of small businesses, towns, cities and local governments have been infected, and hackers have stolen data and left a webshell for further command and control.

In order to help potential victims judge and solve problems quickly, Microsoft today released new tools and guidelines to help server administrators detect and mitigate threats.

Download address:

https://github.com/microsoft/CSS-Exchange/tree/main/Security

Microsoft has also released an emergency alternative mitigation guide for administrators who are unable to apply the built-in independent update released by Microsoft on March 2. However, applying patches is still the most effective preventive measure. If your server is infected, comprehensive remediation will be a bigger job.

China IT News APP

Download China IT News APP

Please rate this news

The average score will be displayed after you score.

Post comment

Do not see clearly? Click for a new code.

User comments