[ad_1]
Microsoft is working to harden its Defender Antivirus program in an attempt to prevent new Exchange Server vulnerabilities.
According to Engadget, Microsoft has been releasing a variety of security updates since groups have been exploiting a number of flaws with Exchange Server.
The first step to block any potential problem has been to update the program so that it solves any problem with the worst vulnerability among the four already identified: CVE-2021-26855. Bad actors would have to first enter through this exploit to access the other three.
Microsoft has made clear that this is an interim measure that is not intended to completely solve the problems caused by exploits, but is a simpler and more accessible way to help protect users who might be at risk. Microsoft has offered a “one-click mitigation tool” to help implement the patch. Protects against a variety of attacks, including those like CVE-2021-26855, that can scan Exchange servers. The tool can also help reduce damage or changes already made by exploits.
Microsoft is cracking down on these vulnerabilities after a recent attack on Taiwanese computer maker Acer. Bleeping Computer reported that the REvil group had demanded a sum of $ 50 million in a ransomware attack against the company.
Acer did not release full details about the event and avoided referring to the ransomware when discussing it. Instead, the company stated that it had “reported recent abnormal situations observed to the competent data protection and law enforcement authorities in several countries.”
The same exploit is believed to have been used to carry out similar attacks, such as those by a Chinese state-sponsored group called Hafnium. Various groups are also believed to be using the same exploits for a number of other attacks.
Microsoft does not yet have a permanent solution.
[ad_2]
