Microsoft Releases Critical Exchange Server Patch to Close ProxyLogon Gaps

Microsoft has published a cumulative update for on‑premises Exchange Server that finally patches the remaining ProxyLogon flaws first disclosed earlier this year. The update seals the chain of vulnerabilities that allowed unauthenticated attackers to execute code remotely and harvest mailboxes, and it is now available via the normal Windows Update channel and Exchange Management Shell.

In addition to the code fixes, Microsoft strongly advises organizations to disable Basic Authentication for Exchange services. Basic auth credentials are easy to capture and have been a favorite vector for credential‑theft malware exploiting ProxyLogon. Defenders should prioritize applying the patch, verify that Basic Authentication is turned off, and monitor logs for any lingering exploitation attempts to reduce the attack surface quickly.

Categories: Vulnerabilities & Exploits, Identity & Access Management

Source: Read original article