In the wake of a devastating global IT outage caused by a faulty CrowdStrike update, Microsoft is taking proactive steps to address cybersecurity concerns. The tech giant has announced a significant Windows Endpoint Security Ecosystem Summit to be held on September 10th, 2024, at its headquarters in Redmond, Washington. Summit Objectives The primary goal of [...]
It’s mid-December and there is lots of good news heading into the end of 2023.Microsoft is not releasing any December Exchange Server CUs or SUs, a welcome break for those with vacations scheduled!We are officially launching our new security product, “Z-Day Guard for Exchange Servers”.It’s simple to install, easy to use, and extremely powerful, giving [...]
For the past 30 years, Messageware has provided cutting-edge Microsoft solutions, and empowered businesses with tools to enhance their productivity and security. As we celebrate Messageware's anniversary, we reflect on its remarkable journey of innovation and growth. For more information, visit our About Us page. The Early Days Messageware's story began in 1993. Our founder [...]
Important: The Aug 8 SU has been withdrawn and re-released by Microsoft due to installation issues in some environments. For more information and what to do if you installed Aug 8 SUv1 you can refer to the Microsoft blog article here: Re-release of August 2023 Exchange Server Security Update packages - Microsoft Community Hub. Otherwise, proceed [...]
Microsoft and the Ukraine CERT have identified targeted attacks against the defense industry and Microsoft Exchange servers by a Russian state-sponsored hacking group known as Turla. The attacks leverage a new malware backdoor called 'DeliveryCheck,' a .NET backdoor which can execute second-stage payloads. What makes DeliveryCheck stand out is its Microsoft Exchange Server-side component. The [...]
Microsoft confirms that Chinese hackers breached the email accounts of more than two dozen organizations worldwide, including U.S. and Western European government agencies. The attacks were carried out by a threat group tracked as Storm-0558, who used an inactive consumer signing key to create tokens for Azure Active Directory and Microsoft accounts (MSA) to access [...]
Microsoft has recently announced its intention to make Edge the default browser for opening web links from the Outlook application. According to the article, this update will affect users of Microsoft 365 services, meaning that any links clicked within the Outlook for Windows app will automatically open in Edge. The originating email with the link [...]
Microsoft 365 has experienced another outage, which is impacting search features in several services. Microsoft experienced another outage that impacted the search functionality of various Microsoft 365 services, including Outlook on the web, Exchange Online, SharePoint Online, Microsoft Teams, and Outlook desktop clients. The company acknowledged the problem on April 24th and stated that it [...]
The New York Attorney General has accepted a settlement of $200,000 from a New York-based medical malpractice law firm in response to their inadequate data security practices that resulted in more than one-hundred thousand hospital patient's details been exposed. According to Letitia James, the Attorney General of New York, HPMB's "poor data security measures" were [...]
The March 2023 SUs address vulnerabilities responsibly reported to Microsoft by security partners and found through Microsoft’s internal processes. Although we are not aware of any active exploits in the wild, our recommendation is to install these updates immediately to protect your environment. Official announcement can be found here. Microsoft has released Security Updates (SUs) for [...]
Microsoft is looking into another global outage that has impacted Exchange Online, its cloud-based email system. The Microsoft 365 Status Twitter feed reported “impact is specific to users who are served through the affected infrastructure in North America, Europe, and the United Kingdom.” The thread continues, "We're investigating an issue wherein users may be unable [...]
In an ongoing battle that started in 2018 with the EU, several state courts, including the federal German court, found that Microsoft 365 was not compliant with GDPR laws. The ban mostly affects educational institutions and companies that use Microsoft’s 365 product line. The ban comes after Microsoft ended its special arrangements with German users. An [...]
When Messageware was approached by a Missouri police department to assist with administrative streamlining, Messageware had the ideal solution. Issues at Hand The department’s administrative staff had been complaining of no MailTo ability for attachments since moving to Office 365. Staff had to re-login to the Outlook web session before they could navigate to attach [...]
When an Australian family-owned apparel retailer found Office 365 hindering their 500+ employees they turned to Messageware. The issue at hand: A customer since 2016, their business uses over one hundred Office 365 K1 Kiosk accounts for their retail stores. As none of these kiosks have mail clients installed on their local computers, they were [...]
When a chain of collision repair centers in the northeast USA discovered that Outlook web was hindering their unmatchable turnaround times, they approached Messageware. The issue at hand: Staff capture repair estimates for submission to insurers using kiosks conveniently located beside damaged vehicles. However, submitting a vehicle collision report becomes frustrating and time-consuming because Outlook [...]
Microsoft has released security updates (SUs) for vulnerabilities found in Exchange Server 2013, Exchange Server 2016, Exchange Server 2019.
On April 20, 2022 Microsoft released new Cumulative Updates: Exchange 2016 CU23 and Exchange 2019 CU12. The previous Cumulative Updates were released on September 28, 2021, more than 6 months ago.
Microsoft has just launched a quarterly cyber threat intelligence brief branded Cyber Signals. The new publication offers an expert perspective into the current threat landscape, discussing trending tactics, techniques, and strategies used by the world’s most prolific threat actors. Cyber Signals is aimed at Chief Information Security Officers, Chief Information Officers, Chief Privacy Officers, and their teams, as they continue [...]
January 2022 Exchange Server Security Updates Microsoft has released security updates for vulnerabilities found in: Exchange Server 2019 Cumulative Update 11 Security Update 3 (KB5008631) Exchange Server 2019 Cumulative Update 10 Security Update 4 (KB5008631) Exchange Server 2016 Cumulative Update 22 Security Update 3 (KB5008631) Exchange Server 2016 Cumulative Update 21 Security Update 4 (KB5008631) Exchange [...]
Microsoft announces there is no major CU release for December 2021. Microsoft typically releases Cumulative Updates quarterly for Exchange Server 2019, 2016, and 2013. There have been a number of critical Security Updates since the latest September 2021 CUs: see KB5007409, KB5007012. For convenience, here are direct links to the Microsoft downloads for the latest [...]
