HAFNIUM targeting Exchange Servers with 0-day exploits
See this blog from Microsoft Security about the HAFNIUM 0-day exploit affecting Exchange Servers.
Actions to be taken can be found here.
More information about the vulnerabilities:
- New nation-state cyberattacks
- At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software
- US Cybersecurity & Infrastructure Security Agency (CISA) directive
- CISA Alert (AA21-062A) Mitigate Microsoft Exchange Server Vulnerabilities
Please note that Microsoft Exchange is not a part of IC's product support; we are providing this information to assist our customers and hopefully prevent a negative impact/outcome for their organization.