As an update to our March 8th and March 9th blog posts on this subject, please note that both the scope and severity of the attacks on MS Exchange servers have reportedly been underestimated. The list of 30,000 victim organizations has grown significantly, with many victims compromised by several hacking groups. Exchange servers that were […]
As an update to yesterday’s post, Chrome Zero Day Being Actively Exploited (Update Now), please be advised that CISA (Cybersecurity & Infrastructure Security Agency) has published a web page, Remediating Microsoft Exchange Vulnerabilities, which provides guidance on specific steps that can be taken by leaders and technical staff. The guidance provided is applicable for organizations […]
Microsoft has issued out-of-band updates for zero day vulnerabilities impacting on-premise Exchange Servers that are currently being exploited by at least one APT (advanced persistent threat) group, dubbed Hafnium. It is suspected that Hafnium has seized control of hundreds of thousands of MS Exchange Servers worldwide and has hacked at least 30,000 U.S. organizations. The […]
Google has patched several critical vulnerabilities in Chrome, including one that is being actively exploited. These vulnerabilities are being tracked as CVE-2021-21166. The most severe of these vulnerabilities could allow for arbitrary code execution and the deletion or modification of data. Users are advised to update to version 89.0.4389.72 as soon as possible. For instructions […]