How to secure your Microsoft Exchange server

When in late 2025, the Cybersecurity & Infrastructure Security Agency (CISA) and the National Security Agency (NSA), in collaboration with international cybersecurity partners, created a best practice guide for Microsoft Exchange server security, an ever-so-relevant question arose: Why now?

Because Exchange servers are used widely and are persistently being threatened, the guide says. Sure, but so are endpoints in general. 

OK, then what about Exchange’s end-of-life (EOL) versions being at a heightened risk of compromise? Like any other EOL product, you mean? 

It’s always a good idea to proactively mitigate risk! Of course, but isn’t that a widely accepted cybersecurity standard? 

View Full Article

Related Articles

• Fragmented Cybersecurity Can’t Stop A Fragmented Threat Landscape
• A Technical Deep Dive Into Email Based Authentication
• Surge in Silent Subject Phishing Attacks
• TrendAI Spark Global Series Event
• The Cyber Assessment Framework (CAF)

Popular Articles

A startup CTO sent me a Slack message last quarter at 2 a.m. Their auth provider had just disclosed ...

Read More >

A Technical Deep Dive Into Email Based Authentication

Over the past year, we’ve made significant progress with Microsoft Discovery by work...

Read More >

Advancing agentic R&D at scale

An investigation into phishing activity over the past months has surfaced a decisive structural evol...

Read More >

Abuse of Cloud-Native Infrastructure in Modern Phishing Campaigns

By now, most people will have heard the news. There is a new AI model in town, and you are feeling u...

Read More >

10 questions to ask when using AI models to find vulnerabilities