Microsoft releases one-click patch for Exchange vulnerability

The quick fix is aimed at small organisations that do not have dedicated IT teams

Microsoft sign on a building

Microsoft has released a one-click patch, the Microsoft Exchange On-Premises Mitigation tool, to help customers apply new security updates in the face of the Exchange Server cyber attack.

This comes after the company released security updates in the wake of the attack, but these fixes were aimed predominantly at large organisations with dedicated IT teams who can handle complex deployments.

The tech giant stated that the one-click patch is aimed at customers who do not have dedicated security or IT teams to apply updates, who may be unfamiliar with the patch/update process or who have not yet applied the on-premises Exchange security update.

In the post, the company writes: “There was a need for a simple, easy to use, automated solution that would meet the needs of customers using both current and out-of-support versions of on-premises Exchange Server.”

Microsoft clarifies that the tool is not a replacement for the Exchange security update but is the fastest and easiest way to mitigate the highest risks to internet-connected, on-premises Exchange Servers prior to patching.

It also underlines that the new tool is effective against the attacks there have been seen so far but says it's not guaranteed to mitigate all possible future attack techniques.

In the UK, the National Cyber Security Centre (NCSC) has urged businesses to patch against the recently disclosed vulnerabilities in Exchange. It advised businesses to install the updates as a “matter of urgency”. An estimated 7,000 UK servers had been affected by the vulnerabilities, of which around half had already been secured.

Furthermore, ESET research found that Microsoft Exchange servers had been targeted by “at least ten hacker groups” and that they had managed to install backdoors on more than 5,000 servers in over 115 countries.

Featured Resources

How virtual desktop infrastructure enables digital transformation

Challenges and benefits of VDI

Free download

The Okta digital trust index

Exploring the human edge of trust

Free download

Optimising workload placement in your hybrid cloud

Deliver increased IT agility with the cloud

Free Download

Modernise endpoint protection and leave your legacy challenges behind

The risk of keeping your legacy endpoint security tools

Download now

Recommended

Microsoft tells IT admins to turn off legacy group policies to improve Windows performance
Microsoft Windows

Microsoft tells IT admins to turn off legacy group policies to improve Windows performance

21 Jan 2022
Microsoft buys game developer Activision Blizzard for $68.7 billion
mergers and acquisitions

Microsoft buys game developer Activision Blizzard for $68.7 billion

18 Jan 2022
Microsoft takes aim at critical RCE flaws with "massive" Patch Tuesday update
cyber security

Microsoft takes aim at critical RCE flaws with "massive" Patch Tuesday update

12 Jan 2022
Windows 11 problems and how to fix them
Microsoft Windows

Windows 11 problems and how to fix them

7 Jan 2022

Most Popular

How to boot Windows 11 in Safe Mode
Microsoft Windows

How to boot Windows 11 in Safe Mode

6 Jan 2022
How to speed up Windows 11
Microsoft Windows

How to speed up Windows 11

7 Jan 2022
Dell XPS 15 (2021) review: The best just got better
Laptops

Dell XPS 15 (2021) review: The best just got better

14 Jan 2022