Forum Discussion

Cirrostratus

Mar 04, 2021

hafnium attack | exchange iapp

Hi we're publishing the owa/outlook through f5 ltm and yesterday we received and update that new kind of attack is targeting exchange servers https://www.microsoft.com/security/blog/2021/03/02/...

MVP

Mar 04, 2021

APM seems like the way to go, if you add authentication before traffic reaching the Exchange server you have a good protection.

it remains kinda unclear in which path the attacks focus, this website suggests one. but things move quickly probably.

https://www.volexity.com/blog/2021/03/02/active-exploitation-of-microsoft-exchange-zero-day-vulnerabilities/

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

hafnium attack | exchange iapp

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Checking for X-Forwarded-For against an Address Data-Group

SSL Bridging and FQDN rewrite Policy

Cisco TACACS+ Config on ISE LTM Pair

iRule causing requests to be duplicated (sometimes)

Related Content

CVE-2021-26855 (SSRF) HAFNIUM APT Group Exploiting Microsoft Exchange Vulnerabilities

Post-Quantum Cryptography, OpenSSH, & s1ngularity supply chain attack

November Security Research Update: Newly Released Attack Signatures

European airport software attack and zero day ‘s are here

The HTTP/2 CONTINUATION frame attack

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS