One of the biggest flaws exploited by Salt Typhoon hackers has had a patch available for years

A security vulnerability in Microsoft Exchange servers remains largely unpatched
A fix was issued four years ago, but some users clearly didn’t update
This flaw may have aided the hacking group Salt Typhoon

Critical security vulnerabilities seem to be a regular occurrence in technology reporting, with countless patches and updates to keep track of – but this Microsoft Exchange Server flaw might be one to take very seriously.

Most of us will be familiar with the major incident in which 9 US telecom giants were breached in what appeared to be a Chinese state sponsored cyber-espionage campaign. The attack, attributed to hacking group Salt Typhoon, is said to have, at least in part, exploited a known critical security flaw in Microsoft Exchange Server.

The vulnerability, nicknamed ProxyLogon, was disclosed by Microsoft in 2021, and a patch has been available for 4 years. Despite this, cyber-risk management company Tenable has calculated in nearly 30,000 instances affected by ProxyLogon, 91% remain unpatched.

CISA guidance

The US Cybersecurity and Infrastructure Security Agency (CISA) previously released in-depth guidance on strengthening visibility and hardening systems and devices in response to the breach, and have emphasized end-to-end encryption for secure communications.

The ProgyLogon is one of five commonly exploited vulnerabilities used by Salt Typhoon. Others include Ivanti Connect Secure Command Injection and Authentication Bypass vulnerabilities, as well as a Sophos Firewall Code Injection Vulnerability.

In light of this, the recommendation and advice for any security teams out there is to always patch where available, and keep as up to date as possible on any software for potential vulnerabilities or fixes.

“In light of the vulnerabilities exposed by Salt Typhoon, we need to take action to secure our networks” said Federal Communications Commission Chairwoman Jessica Rosenworcel.

“Our existing rules are not modern. It is time we update them to reflect current threats so that we have a fighting chance to ensure that state-sponsored cyberattacks do not succeed. The time to take this action is now. We do not have the luxury of waiting.”

https://cdn.mos.cms.futurecdn.net/ef8zeecGrS3texgTdoSkYe-1200-80.jpg

Source link

Watch 10,518 drones light up Vietnam’s skies in historic (and controversial) tech-driven tribute

Dell 14 Plus Review: A great everyday laptop for the price

Dell 14 Plus Review: A great everyday laptop for the price

Leaving Tesla? The Volvo EX30 might just be your ticket

Ex-Israeli Intelligence Official: Shockwaves of Trump’s “Take Over Gaza” Heard, Felt Across Region

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

Which Celebrity Styles Americans Copy Most in 2025: New Study

New ‘Westworld’ trailer introduces us to another dystopian tech company

What’s the point of ‘Charlie’s Angels’ without Sam Rockwell dancing?

These striking photos capture the future of human flight

Portuguese head to the polls in election unlikely to yield stable government

New York Republican floats higher tax rate to pay for SALT

Club Offers Released on May 18, 2025

US says no decision yet on whether to drop Boeing criminal case

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays

One of the biggest flaws exploited by Salt Typhoon hackers has had a patch available for years

Portuguese head to the polls in election unlikely to yield stable government

New York Republican floats higher tax rate to pay for SALT

Club Offers Released on May 18, 2025

US says no decision yet on whether to drop Boeing criminal case