Jeff McJunkin · Sep 29, 2022 · 9:21 PM UTC

Jeff McJunkin

Jeff McJunkin @jeffmcjunkin

29 Sep 2022

🚨 WARNING 🚨 Another day, another 0day exploited in the wild, this time for Exchange. gteltsc.vn/blog/warning-new-… If you have on-prem Exchange port 443 exposed, assume breach. There's no patch, so mitigate in place and search for IOC's. Then... start the migration project.

174

413

Hal Pomeranz · Sep 29, 2022 · 9:41 PM UTC

Hal Pomeranz · Sep 29, 2022 · 9:41 PM UTC

Hal Pomeranz @hal_pomeranz

29 Sep 2022

Replying to @jeffmcjunkin

If you have on-prem Exchange, assume breach

Sep 29, 2022 · 9:41 PM UTC

Jeff McJunkin · Sep 29, 2022 · 9:42 PM UTC

Jeff McJunkin @jeffmcjunkin

29 Sep 2022

Replying to @hal_pomeranz

Agreed, regardless of the current 0day/exploitation status. Sadly. It's just too much attack surface to have exposed in 2022.