IT review 2021: ProxyShell
In our IT review for 2021, the security risks associated with Exchange servers - also known as "Proxyshell" - are a must. In this blog post, we describe what the ProxyShell vulnerability is all about and how companies can protect themselves against sudden security risks.
In the fall of 2021, the so-called ProxyShell vulnerability became known as a result of an enormous wave of attacks on unpatched Exchange servers (on-premise) versions 2013 to 2019. The Federal Administration's Computer Emergency Response Team (CERT-Bund for short) published an official security warning one day later. Fortunately, the vulnerability was quickly closed with a new patch released at short notice. However, it is questionable why this patch was only published after the vulnerability became known. Back in 2011, security researchers warned of a vulnerability on Exchange servers that could allegedly be hacked remotely by exploiting several security gaps. Furthermore, one should not rely on quick fixes for digital security risks - in the case of ProxyShell, almost 2000 servers were identified as vulnerable within 48 hours. Particularly risky: if your own server has been infected, even a subsequent patch would not help. In any case, the Exchange server should be checked for any attack patterns.
Exchange Server is Microsoft's e-mail and groupware server service. With an Exchange server, companies can organize their e-mail traffic and other tasks via a central interface. In contrast to the well-known email providers for private individuals, an Exchange server can be installed and used completely independently of foreign or third-party servers. Such an "in-house" solution is also interesting for companies due to the high data protection requirements that apply in Germany.
We at b.r.m. Technologie- und Managementberatung are the reliable, competent and regional IT service provider for companies in Bremen and the surrounding area. With us, you can be sure that the highest security standards are met, that your systems are always up to date and secure, and that you benefit from the advantages of energy-saving green IT. Please contact us for further information.