Microsoft Exchange Servers Still Open to Actively Exploited Flaw

The Threat Post reports on actively used flaw in Microsoft Exchange Servers.

The vulnerability in question (CVE-2020-0688) exists in the control panel of Exchange, Microsoft’s mail server and calendaring server. The flaw, which stems from the server failing to properly create unique keys at install time, was fixed as part of Microsoft’s February Patch Tuesday updates – and admins in March were warned that unpatched servers are being exploited in the wild by unnamed advanced persistent threat (APT) actors.

Read more on The Threat Post