Forum Discussion

Cirrostratus

Mar 04, 2021

hafnium attack | exchange iapp

Hi we're publishing the owa/outlook through f5 ltm and yesterday we received and update that new kind of attack is targeting exchange servers https://www.microsoft.com/security/blog/2021/03/02/...

MVP

Mar 06, 2021

if you have ASM / AWAF this is useful to check:

https://devcentral.f5.com/s/articles/HAFNIUM-APT-Group-Exploiting-Microsoft-Exchange-Vulnerabilities

Abed_AL-R

Cirrostratus

Mar 07, 2021

Thank you boneyard :) Great articles

We do have the APM along with 2fa on the OWA

we'll check also the ASM option

I saw also that DevCentral published ASM template to have OWA in blocking mode from day one

https://devcentral.f5.com/s/articles/new-asm-outlook-web-access-owa-2016-template-for-bigip-v13-29413

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

hafnium attack | exchange iapp

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Illegal Metacharacter in Parameter Name in Json Data

Cisco TACACS+ Config on ISE LTM Pair

Checking for X-Forwarded-For against an Address Data-Group

SSL Bridging and FQDN rewrite Policy

How can I get started with iCall

Related Content

CVE-2021-26855 (SSRF) HAFNIUM APT Group Exploiting Microsoft Exchange Vulnerabilities

Post-Quantum Cryptography, OpenSSH, & s1ngularity supply chain attack

November Security Research Update: Newly Released Attack Signatures

European airport software attack and zero day ‘s are here

The HTTP/2 CONTINUATION frame attack

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS