1

FBINSA

Microsoft3HafniumHafnium4Microsoft Exchange Servere

Exchange Server

Hafnium

Exchange ServerHafnium

CISA

CISA is aware of widespread domestic and international exploitation of Microsoft Exchange Server vulnerabilities and urges scanning Exchange Server logs with Microsoft’s IOC detection tool to help determine compromise. https://t.co/khgCR2LAs0. #Cyber#Cybersecurity#InfoSec

— US-CERT (@USCERT_gov) March 6, 2021

CISAMicrosoft Exchange ServerMicrosoftIOCExchange Server

HafniumVolexityMatthew MeltzerITIT

Red CanaryHuntressHafniumESET10

Red CanaryKatie NickelsExchange Server

ITWeb

CISA

Patching and mitigation is not remediation if the servers have already been compromised. It is essential that any organization with a vulnerable server take immediate measures to determine if they were already targeted. https://t.co/HYKF2lA7sn

— National Security Council (@WHNSC) March 6, 2021

Runa Sandvik

HafniumExchange Server1

SI-CERTTwitter

CISA201912

ISP

BSIP / Getty Images

Zack WhittakerHirokazu Kusakabe