What you need to know about Microsoft's Vulnerabilities from recent Ransomware Criminals

According to a forbes article by Thomas Brewster “...former Microsoft security staffer has warned that cybercriminals are exploiting vulnerabilities in Microsoft Exchange email servers en masse because organizations were not properly warned which systems to patch.”

The article then goes on to interview Kevin Beaumont the aforementioned security staffer and his thoughts are astonishingly alarming, explaining that customers were not given the vulnerabilities standard identifying numbers to make it easier for users to determine what needed patching.

 “...created a situation where Microsoft’s customers were misinformed about the severity of one of the most critical enterprise security bugs of the year,”

Solution 1:

Because of weaknesses uncovered during a hacking contest earlier this year Beaumont has released a way to identify unpatched systems and is already being put to use by the National Computer Emergency Response team in Austria to scan for vulnerable servers, which remedies the three weaknesses found.

Microsoft's Vulnerability:

The three weaknesses found in Microsoft Exchange when combined, can be used to remotely take control of an email server.