Recent Attacks Targeting Microsoft Exchange

Thursday 11th March, 2021

Over the past week, many organisations across all market sectors have fallen victim to a recent cyber-attack targeting Microsoft Exchange Server Vulnerabilities. As a result of these vulnerabilities being exploited, adversaries can access Microsoft Exchange servers and allow the installation of additional tools to facilitate long-term access into victims’ environments. There has also been a report of multiple threat actors leveraging these zero-day vulnerabilities, meaning post-exploitation activity may vary depending on the purpose of the different threat actors.

In the news:

Our Security Operations Centre (SOC) Managed Detection and Response (MDR) Service utilises Palo Alto Networks Cortex XDR which delivers a consolidated approach to cyber security, leveraging existing investments in perimeter security, log collector platforms and more. It’s the industry’s only open and integrated AI-based continuous SOC platform that significantly improves security outcomes through automation and unprecedented accuracy.

To demonstrate the capabilities of our SOC MDR offering, please read the Palo Alto Networks security blog which explains how this recent attack can be hunted for within an organisation.

For further information on our SOC and our Managed Detection and Response service please contact the KHIPU team.

UK: +44 (0)345 272 0900

SA: +27 (0)41 393 7608