Microsoft continues to monitor and investigate attacks exploiting the recent on-premises Exchange Server vulnerabilities. These attacks are now performed by multiple threat actors ranging from financially motivated cybercriminals to state-sponsored groups.

Hackers attack Linux and Windows Server both very seriously. Not a day goes by where hundreds of attempts to logon to the server here. Using very long cryptographic passwords can keep automated machine at back.

Google Chrome suggests modest passwords for sites when a change is required. Chrome can manage with a user generated password that may be longer. Some sites impose short limits when this is unnecessary with systems that use hashed passwords.

This Exchange vulnerability issue should motivate server managers to update their operating systems, Microsoft released a one-click tool that automatically mitigates one of the vulnerabilities and scans servers for known attacks. Microsoft also built this capability into Microsoft Defender Antivirus, expanding the reach of the mitigation.