According to the IT service provider Shodan, tens of thousands of Exchange servers in Germany were vulnerable to attack via the Internet and are very likely already infected with malware. This situation affects companies and organisations of all sizes.

The BSI recommends installing the security updates provided by Microsoft without delay. Vulnerable Exchange systems should be checked for relevant anomalies as a matter of urgency due to the high risk of attack.

You will find a BSI cyber security warning containing information and measures for dealing with these vulnerabilitie: Microsoft Exchange Schwachstellen Detektion und Reaktion.

The relevant information is continually updated on the BSI website.

Additional information:

Press releases from the BSI - 5. März 2021

Recording of the BSI-Livestream "Informationen und Hilfestellungen" - 11. März 2021 on YouTube

Further information and links, including external support services

If you realise that your system has fallen victim to a successful attack, you can report a security incident to the BSI Situation Centre:

Your organisation is part of a critical infrastructure

Your organisation is NOT part of the critical infrastructure