Generic filters

MYSEC.TV

Home   /   RESOURCES   /   MYSEC.TV   / Microsoft Exchange hack and advice for threat hunting

Microsoft Exchange hack and advice for threat hunting

Tech & Sec Weekly
SHARE:

IN THIS VIDEO

Following Microsoft’s news about Hafnium, the Australian Cyber Security Centre (ACSC) advises organisations using Microsoft Exchange to urgently patch the following Common Vulnerabilities and Exposures (CVEs):

CVE-2021-26855 – server-side request forgery (SSRF) vulnerability in Exchange.
CVE-2021-26857 – insecure deserialization vulnerability in the Unified Messaging service.
CVE-2021-26858 – post-authentication arbitrary file write vulnerability in Exchange.
CVE-2021-27065 – post-authentication arbitrary file write vulnerability in Exchange.
If successfully exploited, these CVEs would allow an unauthenticated attacker to write files and execute code with elevated privileges on the underlying Microsoft Windows operating system.

A large number of Australian organisations are yet to patch vulnerable versions of Microsoft Exchange, leaving them vulnerable to compromise. The ACSC is encouraging these organisations to do so urgently.

We cross to the US and speak with Mat Gangwer, Senior Director, Sophos Managed Threat Response and review the Microsoft Exchange hack and threat hunting advice.

Full article, including updated ESET research: https://australiancybersecuritymagazi…

#Exchangehack#microsoft#cybersecurity#cyberbreach#exchange#CVE#Sophos

OTHER VIDEOS IN THIS SERIES

tile_-0103
March 1, 2024
We speak with Joel Lisk, Research Associate (Space and Regulation) at the Jeff Bleich Centre for Democracy and Disruptive Technologies at Flinders University who provides expert analysis on the Australia’s new US space tech agreement. Watch Now
space-42
February 22, 2024
We speak with John Serafini, Chief Executive Officer of HawkEye 360, the leading developer of space-based radio frequency (RF) mapping and analytics capabilities. John founded the company and has served as the CEO since company incorporation in 2015. Watch Now
space-32
February 22, 2024
We speak with Peter Stocken, Business Development Manager for In-Space Missions Ltd, a wholly owned subsidiary of BAE Systems, which has been awarded further funding from the UK Space Agency to progress its Faraday Dragon rideshare satellite programme. Watch Now
space-22
February 22, 2024
We speak with Dr Naoko Sugita, International Coordination Officer and Advisor to the Director, Earth Observation Research Center, Japan Aerospace Exploration Agency (JAXA) Watch Now