Main logo icon
Submit a Ticket 727-386-9493
  • Home
  • Services
    • Cloud Computing
    • Consulting
    • Cyber Security
    • IT Support
    • Managed Services
    • Network Design
    • VoIP Cloud PBX
  • About
  • Trends
  • Contact

Trends

Microsoft Hafnium Attack Will Kill Many Businesses


by
March 23, 2021

HAFNIUM targeting Exchange Servers FAQ: https://docs.microsoft.com/en-us/answers/questions/298536/faq-for-march-2021-exchange-server-security-update.html

The Exchange Server team has created a script to run a check for HAFNIUM IOCs to address performance and memory concerns. That script is available here: https://github.com/microsoft/CSS-Exchange/tree/main/Security.

The recommendation is to rebuild the Exchange server if you are seeing indicators of compromise.

Great reading on lateral movement and crypto spread: https://blueteamblog.com/microsoft-exchange-zero-days-mitigations-and-detections

The team at Huntress Labs has a very good write-up worth reading: https://support.huntress.io/article/315-0-day-exploit-exchange-hafnium

Read over our Reddit Thread and Huntress Blog that gives our details on what to look for–we will continue updating them as we have more information.

Make absolutely 100% sure you have the latest Exchange Server updates. For Exchange 2013, 2016, 2019 refer to KB5000871 and for Exchange 2010 refer to KB5000978.

Affiliated CVEs

    • CVE-2021-26855
    • CVE-2021-26857
    • CVE-2021-26858
    • CVE-2021-27065
Subscribe to our newsletter and never miss a thing from TechTripp
Main logo icon
Submit a Ticket Pay Online
About
  • Company
  • What We Do
  • Our Philosophy
  • Tech Expertise
  • Advantages
Services
  • Cyber Security
  • IT Support
  • Network Design
  • Managed Services
  • VoPI Cloud PBX
Misc
  • Contact
  • Newsletter
  • Testimonials
  • Privacy Policy
  • Terms & Conditions

© 2021 TechTripp LLC, All Rights Reserved