The Federal Office for Information Security (BSI) warns that 92% of the 33,000 monitored on-premise Exchange servers are using versions that have lost official support, placing vital infrastructural systems at risk of cyberattacks. This widespread non-compliance with end-of-support deadlines reflects serious vulnerabilities, particularly in key areas such as healthcare and education. With support for Exchange Server 2016 and 2019 ended in October 2025, these servers are left without essential security patches, leading to potential exploitation by cybercriminals.
The BSI has identified that over 45% of the surveyed servers are still on version 2019, while another 40% are using 2016. A troubling 2,500 have migrated to the supported Exchange Server Subscription Edition. The lack of updates may expose these systems to significant threats similar to past breaches like ProxyLogon. The BSI’s CERT-Bund team continues to advise operators on upgrading to secure versions to mitigate risks. Consequently, organizations must emphasize robust security measures, including IP whitelisting and consulting IT-Grundschutz guidelines, to protect sensitive data and maintain operational integrity.
👉 Pročitaj original: Cyber Security News
