Menu
MYSEC.TV
Microsoft Exchange hack and advice for threat hunting
Tech & Sec Weekly
SHARE:
IN THIS VIDEO
Following Microsoft’s news about Hafnium, the Australian Cyber Security Centre (ACSC) advises organisations using Microsoft Exchange to urgently patch the following Common Vulnerabilities and Exposures (CVEs):
CVE-2021-26855 – server-side request forgery (SSRF) vulnerability in Exchange.
CVE-2021-26857 – insecure deserialization vulnerability in the Unified Messaging service.
CVE-2021-26858 – post-authentication arbitrary file write vulnerability in Exchange.
CVE-2021-27065 – post-authentication arbitrary file write vulnerability in Exchange.
If successfully exploited, these CVEs would allow an unauthenticated attacker to write files and execute code with elevated privileges on the underlying Microsoft Windows operating system.
A large number of Australian organisations are yet to patch vulnerable versions of Microsoft Exchange, leaving them vulnerable to compromise. The ACSC is encouraging these organisations to do so urgently.
We cross to the US and speak with Mat Gangwer, Senior Director, Sophos Managed Threat Response and review the Microsoft Exchange hack and threat hunting advice.
Full article, including updated ESET research: https://australiancybersecuritymagazi…
#Exchangehack #microsoft #cybersecurity #cyberbreach #exchange #CVE #Sophos
OTHER VIDEOS IN THIS SERIES
January 17, 2025
January 15, 2025
We speak with Dr Kirsten Banks at the launch, held at the SeaLife Aquarium in Sydney on 15 January.
Watch Now
January 15, 2025
We speak with Dr Karl Kruszelnicki at the launch, held at the SeaLife Aquarium in Sydney on 15 January.
Watch Now
December 18, 2024
Group-IB has released a fascinating case investigation on deep fake fraud.
Watch Now
