nanog mailing list archives
Re: Microsoft Exchange zero day
From: Scott Morizot <tmorizot () gmail com>
Date: Fri, 5 Mar 2021 17:02:29 -0600
On Fri, Mar 5, 2021 at 4:26 PM Eric Kuhnke <eric.kuhnke () gmail com> wrote:
ISPs/NSPs with customers running self hosted or on-premises Exchange may want to be aware of this. https://krebsonsecurity.com/2021/03/at-least-30000-u-s-organizations-newly-hacked-via-holes-in-microsofts-email-software/ https://www.microsoft.com/security/blog/2021/03/02/hafnium-targeting-exchange-servers/
Yes, and CISA released an alert and an emergency directive. https://us-cert.cisa.gov/ncas/current-activity/2021/03/03/cisa-issues-emergency-directive-and-alert-microsoft-exchange
Current thread:
- Microsoft Exchange zero day Eric Kuhnke (Mar 05)
- Re: Microsoft Exchange zero day Scott Morizot (Mar 05)
- RE: Microsoft Exchange zero day Kevin McCormick (Mar 05)
- Re: Microsoft Exchange zero day Scott Morizot (Mar 05)