HAFNIUM Update: What You Need to Know
On March 16th of this year we posted “HAFNIUM: What you need to know” and today we will be providing an update on what you need to know now, including links to resources that provide some new remediation steps.
Updated step for remediation and prevention
The Cybersecurity & Infrastructure Security Agency (CISA) has issued new supplemental steps for Federal agencies that any small business impacted by HAFNIUM can also follow.
What you can do to protect your small business
As we discussed in our previously it is important to identify if you are susceptible to this cyberattack. If you handle your IT internally, your team needs to look into this. If you use a managed service provider, contact them to look into it.
- Supplemental direction
- CISA Emergency Directive 21-02: Mitigate Microsoft Exchange On-Premises Product Vulnerabilities
- CISA Alert AA21-062A: Mitigate Microsoft Exchange Server Vulnerabilities
- CISA web page: Remediating Microsoft Exchange Vulnerabilities
- Microsoft’s EOMT.ps1 blog post
Staying updated on new remediation steps for critical cyberattacks is an important aspect of cybersecurity. As threats change and as more information is learned about the cyberthreat, the more we need to stay up to date. Most cyberthreats are dynamic and continuously change, making it difficult to sometimes to protect from the threat.
For more information on protecting your small business from cyberattacks checkout Small Business, Big Threat!