CISA and NSA share tips on securing Microsoft Exchange servers www.bleepingcomputer.com/news/secu…
The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) have released guidance to help IT administrators harden Microsoft Exchange servers on their networks against attacks.
Recommended best practices include hardening user authentication and access, minimizing application attack surfaces, and ensuring strong network encryption.
The agencies also advise network defenders to decommission end-of-life on-premises or hybrid Exchange servers after transitioning to Microsoft 365, because keeping one last Exchange server in their environment that isn’t kept up-to-date can expose their organizations to attacks and significantly increase security breach risks.
