Microsoft Exchange introduces new security measures to prevent another 2021

Let’s exchange this year for another one.

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

What you need to know

What you need to know

Recently, Microsoft Exchange found itself in the hot seat thanks to its Autodiscover protocol’s improper implementation resulting in the leak of nearly100,000 Windows credentials. Though the company appeared to implement one temporary safety measure to mitigate the issue, it also unveiled another that will hopefully beless of a Band-Aidand more of a fix.

Basic Authentication is being permanently disabled in Exchange Online, starting October 1, 2022. While theblog postannouncing this news doesn’t directly acknowledge the leaks, the two events happening in such close proximity may raise eyebrows, given that the move by Microsoft counters one of the issues Exchange has been having.

Microsoft has also introduced a new Exchange Server service (viaBleepingComputer). The Microsoft Exchange Emergency Mitigation tool will automatically apply Microsoft-administered mitigations for active security issues. This should result in less of the process requiring manual attention and, by extension, help prevent avoidable situations.

The Microsoft Exchange Emergency Mitigation tool arrives months after the late 2020, early 2021 kerfuffle surrounding Microsoft Exchange that involved reports of state-sponsored Chinese hackersextracting data for secret AI projects. Exchange was at the center of the drama, which received major attention from theU.S. Cybersecurity and Infrastructure Security Agency (CISA)at the situation’s peak.

In summary, Exchange and its various extensions are working to become less easy targets for threat actors. Whether these efforts will prevent another rocky year remains to be seen. Keep it posted to Windows Central for all updates regarding the good, the bad, and the Exchange.

Get the Windows Central Newsletter

Get the Windows Central Newsletter

All the latest news, reviews, and guides for Windows and Xbox diehards.

Robert Carnevale is the News Editor for Windows Central. He’s a big fan of Kinect (it lives on in his heart), Sonic the Hedgehog, and the legendary intersection of those two titans, Sonic Free Riders. He is the author ofCold War 2395. Have a useful tip? Send it to robert.carnevale@futurenet.com.