To remediate the recent Exchange server vulnerabilities, Microsoft has released a new mitigation tool to assist organizations in their efforts to help stop the ongoing exploitation against vulnerable Exchange servers. The Exchange On-premises Mitigation Tool (EOMT) contains all of the mitigations to prevent exploitation of CVE-2021-26855 and fulfill all the dependencies necessary to protect Exchange before patching. The script will also attempt to remediate compromised devices by removing any lingering web shells. Microsoft recommends that IT administrators who have not yet patched use this script over the previous ExchangeMitigations.ps1 script as EOMT automates the process, so long there is an active Internet connection to download the dependencies.
By Anthony Zampino Introduction Leading up to the most recent Russian invasion of Ukraine in