Show notes are at https://stevelitchfield.com/sshow/chat.html
Manage episode 289332855 series 1249151
By Richard Campbell. Discovered by Player FM and our community — copyright is owned by the publisher, not Player FM, and audio is streamed directly from their servers. Hit the Subscribe button to track updates in Player FM, or paste the feed URL into other podcast apps.
A severe set of exploits have hit the on-premises Exchange server world. Richard talks to Tony Redmond about the so-called Hafnium exploits, a collection of four zero-day exploits that can allow an attacker to run arbitrary code on Exchange servers visible to the internet. Exchange Online is not affected, and it appears that on-premises Exchange servers only accessible by VPN are also safe. The patches are available for Exchange 2010 on upward, but it is likely too late for tens of thousands of Exchange servers. What happens now?