Do you use Microsoft Exchange? Hackers are actively exploiting a new zero-day flaw

Microsoft warns of a new zero-day vulnerability that leaves Exchange open to hackers.
Morning Overview on MSN

Microsoft just confirmed attackers are exploiting an Exchange Server zero-day to silently hijack inboxes — CVE-2026-42897 lets them rewrite emails and steal sessio…

Organizations running Microsoft Exchange Server face an active threat after a zero-day vulnerability was confirmed to allow ...

Microsoft Confirms Active 0-Day Exploit—Check Emergency Mitigation

Microsoft Exchange users are urged to mitigate a zero-day vulnerability that CISA has confirmed is under active exploitation.
Dark Reading

Microsoft Exchange Server Flaw Exploited as a Zero-Day Bug

Microsoft has identified one of the critical vulnerabilities in Exchange Server that the company disclosed in February's Patch Tuesday update as actually being a zero-day threat that attackers are ...
Redmond Magazine

Final Exchange Server 2019 Cumulative Update Released

On Monday, Microsoft released the last major update for Exchange Server 2019. The aging Exchange Server is set to lose support on Oct. 14, 2025. This final update (2025 H1 Cumulative Update (CU15) ...
Dark Reading

Microsoft Updates Mitigation for Exchange Server Zero-Days

Microsoft today updated its mitigation measures for two recently disclosed and actively exploited zero-day vulnerabilities in its Exchange Server technology after researchers found its initial ...
Bleeping Computer

Microsoft Exchange updates pulled after breaking non-English installs

Microsoft has pulled Microsoft Exchange Server's August security updates from Windows Update after finding they break Exchange on non-English installs. On August 8th, Microsoft released new Exchange ...