Hello and welcome to the Monday, January 30th, 2023 edition of the Sands Internet Storm Center's Stormcast.

My name is Johannes Ulrich and I'm a recording from Jacksonville, Florida.

Microsoft's Exchange Server is still one of the favorite targets for a wide range of attackers.

Even with all the patches apply, it may well just be a matter of time for new vulnerabilities to be discovered.

In response, Microsoft published a blog post that should help administrators to keep exchange up to date with future updates or even help you install the current updates if you haven't gotten around to that yet.

Some may disagree with one of the statements in the blog post that updating exchange servers is straightforward.

But maybe after you are reading Microsoft's guidance, it will at least be easier. The blog post also highlights the exchange

server health checker tool that you can use to identify exchange servers that are missing

any of the updates.

Exchange updates are not part of the Windows server updates, so make sure you apply both.

You need the exchange update and the server update.

The exchange update you usually download separately.

And remember that mitigations that you may have seen only by you time,

they're not meant to replace patches.

So always apply your patches.

And we have seen, of course, some high-profile compromises that happened because people sort of relied too much on these

mitigations. You may have been receiving a large number of automated phone calls offering

real estate and mortgage services recently. Well, in response now, the United States Federal Communication Commission,

the FCC, has taken a somewhat unusual step to send a cease and desist letter to Twilio.

Twilio, if you're not familiar with that, it's a very popular choice to implement sort of automated

calling services due to the

relatively simple API. I've used it like for some multifactor authentication and such, but it

...