Joseph Assaf Turner
80% of Exchange servers still unpatched for a critical vulnerability
The Bleeping Computer reports that a flaw was found in Microsoft Exchange that allows an attacker to execute arbitrary code remotely. A patch was made available in February of 2020 and still, 80% of all internet-facing Exchange servers are unpatched, left vulnerable to attackers. Since the patch was made available, it is now much easier for attackers to discover the vulnerability and exploit it in unpatched servers. "We have a crisis on our hands" and "We're not sure if the company will survive this outbreak" are just two of the many reasons I hear when talking to company CXOs around the world. Yes, the company is in survival mode. Yes, uncertainty is skyrocketing. Yes, cybersecurity naturally gets pushed aside. And yes - the day to day operations take precedence. But what if your operational efforts are actually successful and then you lose access to your data and network because an attacker found your vulnerable server? What if the company actually makes it through only to discover a massive data breach after the crisis is over?
Patching operating systems and software is one of the most important steps in protecting your network from attackers. This is not even cybersecurity but IT best practices.
Neglecting such a simple task could e devastating to a company struggling through today's business environment. Cybersecurity is not a luxury you need to cut in order to survive the COVID-19 outbreak crisis. It is your lifeline to reliable, available and confidential information.
Letting cybersecurity slip, basically hands the company information systems to the attackers' hands. Don't let cybersecurity slip. 'Especially in this economy'