Microsoft releases one-click patch for Exchange vulnerability

The quick fix is aimed at small organisations that do not have dedicated IT teams

Microsoft sign on a building

Microsoft has released a one-click patch, the Microsoft Exchange On-Premises Mitigation tool, to help customers apply new security updates in the face of the Exchange Server cyber attack.

This comes after the company released security updates in the wake of the attack, but these fixes were aimed predominantly at large organisations with dedicated IT teams who can handle complex deployments.

The tech giant stated that the one-click patch is aimed at customers who do not have dedicated security or IT teams to apply updates, who may be unfamiliar with the patch/update process or who have not yet applied the on-premises Exchange security update.

In the post, the company writes: “There was a need for a simple, easy to use, automated solution that would meet the needs of customers using both current and out-of-support versions of on-premises Exchange Server.”

Microsoft clarifies that the tool is not a replacement for the Exchange security update but is the fastest and easiest way to mitigate the highest risks to internet-connected, on-premises Exchange Servers prior to patching.

It also underlines that the new tool is effective against the attacks there have been seen so far but says it's not guaranteed to mitigate all possible future attack techniques.

In the UK, the National Cyber Security Centre (NCSC) has urged businesses to patch against the recently disclosed vulnerabilities in Exchange. It advised businesses to install the updates as a “matter of urgency”. An estimated 7,000 UK servers had been affected by the vulnerabilities, of which around half had already been secured.

Furthermore, ESET research found that Microsoft Exchange servers had been targeted by “at least ten hacker groups” and that they had managed to install backdoors on more than 5,000 servers in over 115 countries.

Featured Resources

Next-generation time series: Forecasting for the real world, not the ideal world

Solve time series problems with AI

Free download

The future of productivity

Driving your business forward with Microsoft Office 365

Free download

How to plan for endpoint security against ever-evolving cyber threats

Safeguard your devices, data, and reputation

Free download

A quantitative comparison of UPS monitoring and servicing approaches across edge environments

Effective UPS fleet management

Free download

Recommended

Microsoft launches platform to help firms monitor carbon emissions
cloud computing

Microsoft launches platform to help firms monitor carbon emissions

27 Oct 2021
Google and Microsoft smash estimates on strong cloud growth
Cloud

Google and Microsoft smash estimates on strong cloud growth

27 Oct 2021
Microsoft resellers warned of Nobelium attacks on IT supply chain
cyber attacks

Microsoft resellers warned of Nobelium attacks on IT supply chain

25 Oct 2021
AMD and Microsoft fix Ryzen performance in Windows 11
Hardware

AMD and Microsoft fix Ryzen performance in Windows 11

22 Oct 2021

Most Popular

Best Linux distros 2021
operating systems

Best Linux distros 2021

11 Oct 2021
Apple MacBook Pro 15in vs Dell XPS 15: Clash of the titans
Laptops

Apple MacBook Pro 15in vs Dell XPS 15: Clash of the titans

11 Oct 2021
Royal Mint to recover gold from smartphones and laptops in world first
Technology

Royal Mint to recover gold from smartphones and laptops in world first

21 Oct 2021