UK Cyber Authority Urges Organizations to Install Microsoft Updates

March 15, 2021

LONDON – Britain’s cyber security body urged organizations to install the latest Microsoft updates as a matter of urgency on Friday, after the company became aware of flaws that make email servers vulnerable.

“We are working closely with industry and international partners to understand the scale and impact of UK exposure, but it is vital that all organizations take immediate steps to protect their networks,” said Paul Chichester, director for operations at the National Cyber Security Centre (NCSC).

Related: Ransom-Seeking Hackers Are Exploiting Flaws in Microsoft Email Software Microsoft Flaw Exposes as Many as 60,000 Computer Systems in Germany

“Whilst this work is ongoing, the most important action is to install the latest Microsoft updates.”

The NCSC appeal follows similar warnings from authorities in the United States and Europe about the weaknesses found in Microsoft’s Exchange Server software.

The number of potentially vulnerable servers in Britain was around 7,000 to 8,000, NCSC officials said, and about half of them had been patched already.

The patch, issued by Microsoft earlier this month, fixes the vulnerability, but it does not fix any malware such as ransomware already installed.

[Read more: Hacks of Microsoft Outlook Email Program Continue Despite Patch ]

“Organizations should also be alive to the threat of ransomware and familiarize themselves with our guidance,” Chichester said. “Any incidents affecting UK organizations should be reported to the NCSC.”

The officials said they had not seen ransomware attacks linked to the Microsoft Exchange issue occurring in Britain at any scale, but the longer that servers remained vulnerable, the more the risk would increase.

(Reporting by Paul Sandle; writing by Kate Holton; editing by Michael Holden and Giles Elgood)

Topics Cyber

Was this article valuable?

Here are more articles you may enjoy.