Proxylogon and Related Microsoft Exchange Server Vulnerabilities

On March 2, we published an article on the community about four zero-day vulnerabilities in Microsoft Exchange Server that were exploited in the wild by a nation-state group that Microsoft calls HAFNIUM. Since then, reports have emerged that there are potentially more than 30,000 organizations compromised due to these flaws including some U.S. think tanks and industrial base entities and entities in the Czech Republic and Norway.

Tenable Research has released additional plugins to help identify vulnerable systems (direct check) and discover potentially compromised systems (indicator of compromise check) within your networks. For more information about these plugins, please visit our blog.