CISA gives federal agencies until Friday to patch Exchange servers

The US Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to install newly released Microsoft Exchange security updates by Friday.

Today, Microsoft released security updates for four Microsoft Exchange vulnerabilities discovered by the NSA.

These Exchange vulnerabilities are capable of remote code execution, with two vulnerabilities not requiring attackers to authenticate first.

Read more…
Source: Bleeping Computer

Related story: NSA discovers critical Exchange Server vulnerabilities, patch now