Are You Affected?
If you saw the news last night, you may be aware of the Microsoft Exchange Server Exploit reported by the BBC. Please be assured that most organisations, especially SMEs, are on Microsoft 365 which is not affected in any way.
The issue only impacts Microsoft Exchange Servers that organisations use to provide email services which they host on-premise. Organisations may also host their Microsoft Exchange servers in a datacentre or via a 3rd party.
Microsoft raised awareness with partners like Cambridge Support and promptly provided a fix. Cambridge Support then acted on the new update to secure our clients running Microsoft Exchange Server.
However, in the time between the vulnerability being identified by hackers and the fix being applied, many organisations have been affected. The danger is that affected organisations may not see any immediate impact but the exposed servers could have a piece of software or code running which opens a back door into the organisations network.
Your IT partner or department should apply the security patch to your Microsoft Exchange server if they haven’t already done so. It is also good practice to review your IT security procedures.
Checking for signs of malware, strange mail flow activity, and any new inbox rules would also be a good exercise to perform.
Even if you use Gmail or Microsoft 365, you still need to pay more attention to your IT security. This is because your email messages, with possible confidential information, might have ended up on an exposed server. This could put you at risk.
What You Can Do
Some of the simple ways for keeping your data safe and secure include:
- Make sure your data is backed up. This is the most important thing you can do.
- Keep your devices updated with all security patches; this includes your mobile devices.
- If you get an unexpected email, be cautious of any links in the message.
- Use strong passwords. Making your passwords even two character longer and more complex will greatly reduce your risks.
- Utilise Multi-Factor Authentication to secure your accounts
- Have suitable antivirus and malware protection in place.
- Ensure your network devices like firewalls have also been updated with the latest security updates.
- Ensure your firewall rules only allow what your business needs.
- Secure your wireless network.
- Be vigilant when working remotely, especially in public places.
Your actions in securing your IT systems will not only reduce your risks but as importantly protect your customers.
To find out more about how Cambridge Support and it’s partners can help your business, contact us now for more details.