NCSC warns businesses to update mail exchange server ‘as a matter of urgency’

12 March 2021, 17:24

Person using a laptop
NCSC warns businesses to update mail exchange server as a matter of urgency. Picture: PA

Vulnerability in Microsoft Exchange Server, used by companies across the world, first came to light last week.

Businesses in the UK have been warned to install a security patch as a matter of urgency by the country’s cyber experts, amid concerns that thousands of email servers could be vulnerable.

The National Cyber Security Centre (NCSC) has redoubled guidance about a Microsoft Exchange Server issue, which could be highly damaging if exploited by hackers.

Microsoft Exchange Server is used by firms across the globe for managing email and calendars.

An alert was first published by the information security arm of GCHQ on March 3, urging firms to install the latest update for 2013, 2016 and 2019 editions of Microsoft Exchange Server immediately.

It is believed between 7,000 and 8,000 exchange servers could be vulnerable, but only half of them are thought to be currently patched.

All organisations are advised to proactively search systems for evidence of compromise in case they have already been affected.

Microsoft believes a highly skilled and sophisticated actor, dubbed Hafnium, is behind the campaign, and is backed by China’s government.

At present, there have been no reported cases of the vulnerability being used to attack businesses in the UK, but the NCSC fears small business in particular could be hit if advice is missed.

Paul Chichester, NCSC director for operations, said: “We are working closely with industry and international partners to understand the scale and impact of UK exposure, but it is vital that all organisations take immediate steps to protect their networks.

“Whilst this work is ongoing, the most important action is to install the latest Microsoft updates.

“Organisations should also be alive to the threat of ransomware and familiarise themselves with our guidance. Any incidents affecting UK organisations should be reported to the NCSC.”

By Press Association

More Technology News

See more More Technology News

A teenager uses his mobile phone to access social media,

Social media users ‘won’t be forced to share personal details after child ban’

Google Antitrust Remedies

US regulators seek to break up Google and force Chrome sale

Jim Chalmers gestures

Australian government rejects Musk’s claim it plans to control internet access

Graphs showing outages across Microsoft

Microsoft outage hits Teams and Outlook users

The Google logon on the screen of a smartphone

Google faces £7 billion legal claim over search engine advertising

A person holds an iphone showing the app for Google chrome search engine

Apple and Google ‘should face investigation over mobile browser duopoly’

UK unveils AI cyber defence lab to combat Russian threats, as minister pledges unwavering support for Ukraine

British spies to ramp up fight against Russian cyber threats with launch of cutting-edge AI research unit

Pat McFadden

UK spies to counter Russian cyber warfare threat with new AI security lab

Openreach van

Upgrade to Openreach ultrafast full fibre broadband ‘could deliver £66bn boost’

Laptop with a virus warning on the screen

Nato countries are in a ‘hidden cyber war’ with Russia, says Liz Kendall

Pat McFadden

Russia prepared to launch cyber attacks on UK, minister to warn

A Google icon on a smartphone

Firms can use AI to help offset Budget tax hikes, says Google UK boss

Icons of social media apps, including Facebook, Instagram, YouTube and WhatsApp, are displayed on a mobile phone screen

Growing social media app vows to shake up ‘toxic’ status quo

Will Guyatt questions who is responsible for the safety of children online

Are Zuckerberg and Musk responsible for looking after my kids online?

Social media apps on a phone

U16s social media ban punishes children for tech firm failures, charities say

Google shown on a smartphone

US Government proposes forcing Google to sell Chrome to break-up tech empire

More Tech News

See more More Tech News

A hand on a laptop keyboard

Digital exclusion report warns 15% of adults do not have skills to get online

The Fianna Fail minister is set to go further to reduce the use of mobile phones in schools (Yui Mok/PA)

Minister working on plans to ban mobile phones in secondary schools

American singer Will.i.am giving a speech.

Will.i.am calls on artists to rediscover ‘secret sauce’ that makes them human

The App Store on an Apple iPhone 6s

Competition watchdog closes Apple and Google probes ahead of rules shake-up

Man using laptop in modern business office with blurred city

Media must stay accountable amid rise of artificial intelligence – Ipso

Icons of social media apps displayed on a mobile phone screen

Ofcom hiring more online safety staff amid calls to tackle misinformation

Latest UK News

See more Latest UK News

Adele in Munich

Adele emotional as ends Las Vegas residency with 100th show - but admits she doesn't know when she'll perform again
Flood water surrounding the town bridge in Bradford-on-Avon

Clean-up begins after Storm Bert brings torrential rain and widespread flooding to parts of UK - with more flooding likely
Oil rig, oil exploration, North Sea

More than 50 staff evacuated after supply vessel crashes into oil rig in North Sea

Rachel Reeves at the annual CBI conference

Rachel Reeves tells businesses no more tax rises as she defends budget at CBI conference

Hundreds of people have staged a demonstration in Dublin in solidarity with Nikita Hand

Hundreds stage demonstration in Dublin in 'utter solidarity' with woman who won civil rape case against Conor McGregor
Lovely couple under mistletoe bunch on light blue background

'Wokery' risks killing off Christmas mistletoe due to fears of people being 'accused of abuse'

More Topics

See more More Topics

War in Ukraine

Cost of Living Crisis

UK Strikes

Immigration

Crime & Police

London

NHS

Royal News