Home   /   RESOURCES   /   MYSEC.TV   / Microsoft Exchange hack and advice for threat hunting

Microsoft Exchange hack and advice for threat hunting

Tech & Sec Weekly


Following Microsoft’s news about Hafnium, the Australian Cyber Security Centre (ACSC) advises organisations using Microsoft Exchange to urgently patch the following Common Vulnerabilities and Exposures (CVEs):

CVE-2021-26855 – server-side request forgery (SSRF) vulnerability in Exchange.
CVE-2021-26857 – insecure deserialization vulnerability in the Unified Messaging service.
CVE-2021-26858 – post-authentication arbitrary file write vulnerability in Exchange.
CVE-2021-27065 – post-authentication arbitrary file write vulnerability in Exchange.
If successfully exploited, these CVEs would allow an unauthenticated attacker to write files and execute code with elevated privileges on the underlying Microsoft Windows operating system.

A large number of Australian organisations are yet to patch vulnerable versions of Microsoft Exchange, leaving them vulnerable to compromise. The ACSC is encouraging these organisations to do so urgently.

We cross to the US and speak with Mat Gangwer, Senior Director, Sophos Managed Threat Response and review the Microsoft Exchange hack and threat hunting advice.

Full article, including updated ESET research: https://australiancybersecuritymagazi…



July 11, 2024
The Australian Centre for Space Engineering Research (ACSER) held the CubeSatPlus2024 Innovation and Development Workshop at UNSW Sydney’s Kensington Campus on 9 – 10 July. Watch Now
July 8, 2024
Prior to Joining Seaco as CIO, Damian held the position of Chief Technology Officer for Workday Asia Pacific and Japan. Watch Now
July 3, 2024
We speak with Professor Melissa de Zwart, Professor Space Law and Governance, Andy Thomas Centre for Space Resources, Deputy Director, ARC Centre of Excellence in Plants 4 Space, University of Adelaide. Watch Now
July 1, 2024
We speak with Peter Nikoloff, Executive Director, The Andy Thomas Space Foundation and get insights into the upcoming 17th Australian Space Forum, 24-25 July 2024 in Adelaide, South Australia. Watch Now