CVE-2020-0688
Russian APT group 'Energetic Bear' attacking state and local networks
There's no evidence to suggest that the group has been able to compromise the integrity of elections data
Over 247,000 Microsoft Exchange Servers remain unpatched for serious RCE bug
The CVE-2020-0688 flaw is being actively exploited in the wild, US federal agencies warned earlier this month
Chinese state-sponsored cyber actors are targeting bugs in F5, Citrix, Pulse and Microsoft Exchange Servers, US agencies warn
Organisations need to patch their systems immediately, they advise
Hackers are mass-scanning the internet to discover Microsoft Exchange servers vulnerable to RCE bug
A patch to fix this bug has already been released by Microsoft
Just 17 per cent of all internet-facing Microsoft Exchange servers are patched against CVE-2020-0688 vulnerability
More than 31,000 Exchange 2010 servers have received no update since 2012
Eighty-five per cent of Microsoft Exchange Servers vulnerable to remote-code execution security flaw patched last month
Organisations warned to patch protect against CVE-2020-0688 as state-backed APTs start targeting vulnerable Exchange Servers