Microsoft launches EOMT tool to help businesses quickly fix Exchange Server security vulnerabilities
In response to high-risk security vulnerabilities in Microsoft Exchange Server, Microsoft is currently thinking of ways to allow all companies to quickly fix the vulnerabilities to prevent servers from being invaded.
Previously, Microsoft has launched response detection tools that can help companies quickly identify whether they have been attacked, but now Microsoft is launching quick automated repair tools.
For small and medium-sized enterprises, they can use this tool if they do not have the ability to check and repair. It can automatically check and block high-risk vulnerabilities with almost no difficulty.
It is worth noting that at least 10 hacker organizations in the world are currently exploiting this vulnerability. Attackers can easily and directly steal email information with the help of the vulnerability.
EOMT is a special mitigation tool developed by Microsoft for Microsoft Exchange Server, which can quickly block corresponding vulnerabilities before deploying updates.
According to Microsoft’s instructions, as long as you run this tool on the server, it will automatically download all dependencies, and then run the scanner to detect whether the server is threatened.
If the vulnerability has not been fixed, the automated tool will mitigate the vulnerability by rewriting the configuration, and if the server has been threatened, the tool will also issue a corresponding reminder.
Microsoft said that for users who are already connected to the public network and want to perform automatic repairs, the newly launched repair tool is relatively a good response.
At present, Microsoft has not found that using this tool may have an adverse effect on Microsoft Exchange Server, so small businesses can use this tool.
Microsoft recommends that users use this tool before using the ExchangeMitigations.ps1 script, which is an automated mitigation program previously launched by Microsoft.
If you need to use the EOMT tool for automated repair, you only need to download the tool, and then execute it through the PowerShell command with administrator privileges.
The premise is that the server must be able to download dependencies and IIS rewrite modules online, and only supports Windows Server 2008R2 and subsequent versions of the operating system.
