![]() ![]() The supplemental directive charges agencies with provisioning firewalls between Microsoft Exchange servers and the internet, deploying updates within 48 hours of their release, using software on servers hosting Microsoft Exchange that are supported by the manufacturer and taking steps to prevent attackers from leveraging “weak privileges to enable a lateral movement path to their target privileges.” They also must analyze Exchange and IIS logs by running the Test-ProxyLogon.ps1 script to check for any hacking activity. ![]() The agencies must report the results of scans by Microsoft Safety Scanner (MSERT) to CISA by April 5, then run scans weekly for the next four weeks using the latest versions of MSERT, reporting any signs of compromise.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |