April 10, 2021

SpywareNews.com

Dedicated Forum to help removing adware, malware, spyware, ransomware, trojans, viruses and more!

Microsoft Exchange – CISA Solorigate latest mitigations April 2021

Several links can be found in April 2021 & March 2021 guides by CISA.  These mitigations can detect, patch, and recover from the major Solorigate attacks during recent months

CISA Releases Supplemental Direction on Emergency Directive for Microsoft Exchange Server Vulnerabilities | CISA

Computer Safety & News – Microsoft Exchange – CISA releases Solorigate mitigation checklists March 2021 (msmvps.com)

CISA has issued supplemental direction to Emergency Directive (ED) 21-02: Mitigate Microsoft Exchange On-Premises Product Vulnerabilities providing additional forensic triage and server hardening, requirements for federal agencies. Specifically, this update directs federal departments and agencies to run newly developed tools —Microsoft’s Test-ProxyLogon.ps1 script and Safety Scanner MSERT—to investigate whether their Microsoft Exchange Servers have been compromised.

Although the Emergency Directive only applies to Federal Civilian Executive Branch agencies, CISA encourages state and local governments, critical infrastructure entities, and other private sector organizations to review the supplemental direction and the following resources for additional information: