What Is Throttling and Blocking Email from Persistently Vulnerable Exchange Servers to Exchange Online?
The Exchange Online protection team recently announced a new initiative to help protect both Exchange Online and Exchange on-premises customers from malicious emails sent by persistently vulnerable Exchange servers. This initiative, known as throttling and blocking email from persistently vulnerable Exchange servers to Exchange Online, is an important step in helping to keep customers’ networks and mailboxes safe from malicious emails.
Why Is This Important?
Throttling and blocking emails from persistently vulnerable Exchange servers is important because it helps to protect customers from malicious emails that could be sent from compromised Exchange servers. The Exchange Online protection team has identified a number of malicious emails that have been sent from persistently vulnerable Exchange servers and are taking steps to ensure that these emails are blocked from being sent to customers’ Exchange Online mailboxes.
How Does It Work?
The Exchange Online protection team will use a combination of technology and manual processes to identify persistently vulnerable Exchange servers and then block or throttle emails sent from these servers. The team will use several different criteria to identify these servers, including IP address, domain, and email address.
Once a persistently vulnerable Exchange server is identified, the team will block or throttle all emails sent from that server. This will help to ensure that malicious emails are not received by Exchange Online customers.
What Can Customers Do?
Customers can take several steps to help protect their Exchange Online mailboxes from malicious emails sent from persistently vulnerable Exchange servers. These steps include:
* Ensuring that their on-premises Exchange server is properly configured and updated.
* Enabling two-factor authentication for their Exchange Online mailbox.
* Deploying the latest security updates for their Exchange server.
* Monitoring their Exchange server for suspicious activity.
* Enabling advanced threat protection for their Exchange server.
Conclusion
Throttling and blocking emails from persistently vulnerable Exchange servers is an important step in helping to protect Exchange Online customers from malicious emails. The Exchange Online protection team is taking steps to identify and block or throttle emails sent from these servers, but customers should also take steps to ensure that their Exchange server is properly configured and updated. This will help to ensure that their Exchange Online mailboxes remain secure.
References:
Throttling and Blocking Email from Persistently Vulnerable Exchange Servers to Exchange Online
