A severe set of exploits have hit the on-premises Exchange server world. Richard talks to Tony Redmond about the so-called Hafnium exploits, a collection of four zero-day exploits that can allow an attacker to run arbitrary code on Exchange servers visible to the internet. Exchange Online is not affected, and it appears that on-premises Exchange servers only accessible by VPN are also safe. The patches are available for Exchange 2010 on upward, but it is likely too late for tens of thousands of Exchange servers. What happens now?
Links: