Microsoft Exchange Zero Day

Microsoft Exchange Zero Day Vulnerability - Update

Microsoft Released a formal fix for the Zero Day vulnerability located in microsoft exchange.

Where relevant to GroupSupport clients this has been deployed.

For full details of the release https://techcommunity.microsoft.com/t5/exchange-team-blog/released-november-2022-exchange-server-security-updates/ba-p/3669045

Published 9/11/2022.

Microsoft Exchange Zero Day Vulnerability - What should you do?

A security researcher has discovered a zero-day vulnerability in Microsoft Exchange that is reported as being actively exploited.  Microsoft have been notified but are yet to comment or release a patch.

GroupSupport is currently applying a mitigation strategy for the relevant clients and scanning for evidence of any existing exploitation. Clients operating Exchange servers will be contacted directly regarding this vulnerability once we have completed this work today.

Once Microsoft release’s a patch this will be applied to the relevant Exchange servers.

Published 5/10/2022.