Skip to Content

Threat Research Report: Hafnium Exchange Zero-Days

On March 2, 2021, Microsoft Security Response Center released updates related to vulnerabilities affecting on-premises deployments of Microsoft Exchange Server 2013/2016/2019. Microsoft also revealed details around active exploitation of these vulnerabilities using zero-day exploits. This RQ Threat Advisory outlines the vulnerability and its exploitation in more detail including IoCs (indicators of compromise) and GreyMatter detection capabilities mapped to MITRE ATT&CK and the Kill Chain.

Security Operations Made Possible with ReliaQuest GreyMatter

Increase visibility, reduce complexity, and manage risk across your existing tools with comprehensive protection unified under a single security operations platform.

GreyMatter's security operations platform dashboard