fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Microsoft: 92% Of Exchange Servers Safe From ProxyLogon Attacks

Microsoft: 92% Of Exchange Servers Safe From ProxyLogon Attacks

Roughly 92% of all Internet-connected on-premises Microsoft Exchange servers affected by the ProxyLogon vulnerabilities are now patched and safe from attacks, Microsoft said on Monday.

A total of 400,000 Internet-connected Exchange servers were impacted by the ProxyLogon vulnerabilities when Microsoft issued the initial security patches, on March 2, with over 100,000 of them still unpatched one week later, on March 9.

Microsoft now says that there are now 43% fewer vulnerable on-premises Exchange servers are reachable over the Internet within a single week of concerted patching efforts worldwide.

From around 82,000 unpatched Exchange servers on March 14, according to Microsoft, there are now roughly 30,000 still exposed to attacks around the world according to RiskIQ data.

“Our work continues, but we are seeing strong momentum for on-premises Exchange Server updates,” the Microsoft Security Response Center tweeted on Monday.

Microsoft published additional sets of security updates after March 11, covering over 95% of all vulnerable versions exposed on the Internet and step-by-step guidance to help address these ongoing attacks.

Also Read: Compliance Course Singapore: Spotlight On The 3 Offerings

The company also released a one-click Exchange On-premises Mitigation Tool (EOMT) tool to enable small business owners to quickly mitigate the recently disclosed ProxyLogon vulnerabilities even without the help of a dedicated security team.

Additionally, Microsoft Defender Antivirus has been updated to automatically protect unpatched Exchange servers from ongoing attacks by automatically mitigating the actively exploited ProxyLogon bugs.​

Worldwide Exchange ProxyLogon exposure (RiskIQ)

Abused to deploy ransomware and cryptominers

This month, Microsoft disclosed that four zero-days were actively being exploited in attacks against on-premises Microsoft Exchange servers.

These vulnerabilities are collectively known as ProxyLogon and are being exploited in indiscriminate attacks targeting organizations from multiple industry sectors worldwide, attempting to steal sensitive information.

Threat actors behind ProxyLogon attacker have been observed deploying web shellscryptomining malware, and, more recently, DearCry and Black Kingdom ransomware payloads on compromised on-premises Exchange servers.

Since Microsoft disclosed the ongoing attacks, Slovak internet security firm ESET has also discovered at least ten APT groups targeting unpatched Exchange servers.

CISA officials said two weeks ago that, so far, there is no evidence of US federal civilian agencies compromised during these ongoing Exchange attacks.

Also Read: Considering Enterprise Risk Management Certification Singapore? Here Are 7 Best Outcomes

The conclusion is based on data collected by federal agencies following an emergency directive issued by CISA days after the ProxyLogon security updates were released, one week ago.

CISA’s emergency directive ordered the agencies to urgently update or disconnect their on-premises Exchange servers and check their networks for indicators of compromise.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us