{"id":2159,"date":"2025-08-07T19:52:59","date_gmt":"2025-08-07T19:52:59","guid":{"rendered":"https:\/\/ft365.org\/index.php\/2025\/08\/07\/new-microsoft-exchange-vulnerability-puts-hybrid-cloud-environments-at-risk\/"},"modified":"2025-08-07T19:52:59","modified_gmt":"2025-08-07T19:52:59","slug":"new-microsoft-exchange-vulnerability-puts-hybrid-cloud-environments-at-risk","status":"publish","type":"post","link":"https:\/\/ft365.org\/index.php\/2025\/08\/07\/new-microsoft-exchange-vulnerability-puts-hybrid-cloud-environments-at-risk\/","title":{"rendered":"New Microsoft Exchange Vulnerability Puts Hybrid Cloud Environments at Risk"},"content":{"rendered":"<div>\n<p><img decoding=\"async\" src=\"https:\/\/ft365.org\/wp-content\/uploads\/2025\/06\/localimages\/32483240-27a8-4f36-ac60-9d465c05a5d5.jpg?width=64&#038;height=64&#038;mode=crop&#038;scale=both&#038;format=webp\" alt=\"Photo of James Coker\" loading=\"lazy\"><\/p>\n<\/div>\n<div id=\"cphContent_pnlArticleBody\" data-layout-id=\"2\" data-edit-folder-name=\"text\" data-index=\"0\">\n<p>Microsoft Exchange customers have been warned about a new high-severity vulnerability, which could allow an attacker to escalate privileges within an organization\u2019s connected cloud environment.<\/p>\n<p>The vulnerability (CVE-2025-53786) has a CVSS Score of 8.0 and impacts on-premises Microsoft Exchange server versions.<\/p>\n<p>Successful exploitation requires an attacker to first gain or possess administrator access on an Exchange Server in an Exchange hybrid deployment.<\/p>\n<p>Once access is gained, a threat actor can leverage the improper authentication flaw to achieve total domain compromise of an organization\u2019s hybrid cloud and on-premises environments without leaving easily detectable and auditable traces, Microsoft warned in a security update on August 6.<\/p>\n<p>There have been no known exploitation attempts at the time of disclosure, but the tech giant warned that such activity is likely to occur.<\/p>\n<p><em>Read now: Ransomware Deployed in Compromised SharePoint Servers<\/em><\/p>\n<h2><strong>Exchange Customers Urged to Take Action<\/strong><\/h2>\n<p>Microsoft urged customers to implement measures set out in its Exchange Server Security Changes for Hybrid Deployments update, published in April 2025, and accompanying non-security Hot Fix.<\/p>\n<p>\u201cMicrosoft strongly recommends reading the information, installing the April 2025 (or later) Hot Fix and implementing the changes in your Exchange Server and hybrid environment,\u201d the firm wrote.<\/p>\n<p>These changes apply specifically to Exchange Server hybrid deployments.<\/p>\n<p>Users who have previously configured Exchange hybrid or OAuth authentication between Exchange Server and their Exchange Online organization should reset the shared service principal\u2019s keyCredentials.<\/p>\n<p>The US Cybersecurity and Infrastructure Security Agency (CISA) published an alert on the disclosure, warning that the vulnerability could impact the identity integrity of an organization\u2019s Exchange Online service.<\/p>\n<p>In addition to the remediation steps outlined by Microsoft, CISA recommends that organizations disconnect public-facing versions of Exchange Server or SharePoint Server that have reached their end-of-life (EOL) or end-of-service from the internet.<\/p>\n<p>\u201cSharePoint Server 2013 and earlier versions are EOL and should be discontinued if still in use,\u201d the agency noted.<\/p>\n<p><em>Image credit: Tada images \/ Shutterstock.com<\/em><\/p>\n<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<p>Microsoft Exchange customers have been warned about a new high-severity vulnerability, which could allow an attacker to escalate privileges within an organization\u2019s connected cloud environment. The vulnerability (CVE-2025-53786) has a CVSS Score of 8.0 and impacts on-premises Microsoft Exchange server versions. Successful exploitation requires an attacker to first gain or possess administrator access on an<\/p>\n","protected":false},"author":2,"featured_media":2160,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-2159","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized"],"featured_image_urls":{"full":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/08\/2159-873efe4d-07dd-4385-897c-31fcc7f92d2a.jpg",300,300,false],"thumbnail":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/08\/2159-873efe4d-07dd-4385-897c-31fcc7f92d2a-150x150.jpg",150,150,true],"medium":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/08\/2159-873efe4d-07dd-4385-897c-31fcc7f92d2a.jpg",300,300,false],"medium_large":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/08\/2159-873efe4d-07dd-4385-897c-31fcc7f92d2a.jpg",300,300,false],"large":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/08\/2159-873efe4d-07dd-4385-897c-31fcc7f92d2a.jpg",300,300,false],"1536x1536":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/08\/2159-873efe4d-07dd-4385-897c-31fcc7f92d2a.jpg",300,300,false],"2048x2048":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/08\/2159-873efe4d-07dd-4385-897c-31fcc7f92d2a.jpg",300,300,false],"morenews-featured":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/08\/2159-873efe4d-07dd-4385-897c-31fcc7f92d2a.jpg",300,300,false],"morenews-large":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/08\/2159-873efe4d-07dd-4385-897c-31fcc7f92d2a.jpg",300,300,false],"morenews-medium":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/08\/2159-873efe4d-07dd-4385-897c-31fcc7f92d2a.jpg",300,300,false],"crawlomatic_preview_image":["https:\/\/ft365.org\/wp-content\/uploads\/2025\/08\/2159-873efe4d-07dd-4385-897c-31fcc7f92d2a-146x146.jpg",146,146,true]},"author_info":{"display_name":"henry","author_link":"https:\/\/ft365.org\/index.php\/author\/henry\/"},"category_info":"<a href=\"https:\/\/ft365.org\/index.php\/category\/uncategorized\/\" rel=\"category tag\">Uncategorized<\/a>","tag_info":"Uncategorized","comment_count":"0","_links":{"self":[{"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts\/2159","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/comments?post=2159"}],"version-history":[{"count":0,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts\/2159\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/media\/2160"}],"wp:attachment":[{"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/media?parent=2159"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/categories?post=2159"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/tags?post=2159"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}