Security News > 2024 > April > Microsoft releases Exchange hotfixes for security update issues
Microsoft has released hotfix updates to address multiple known issues impacting Exchange servers after installing the March 2024 security updates.
Although the April 2024 HU is optional, it also adds support for ECC certificates and Hybrid Modern Authentication for OWA/ECP. If you have installed the March 2024 SU and have not experienced any known issues fixed in the optional update and do not need the new features, you can wait for the next Exchange Server SU, which will also include these hotfixes.
"The April 2024 HU includes the same security updates as the March 2024 SU, while addressing known issues with the March 2024 SU," the Exchange Team explained.
In January, Redmond announced the end of mainstream support for Exchange Server 2019, saying it will keep releasing patches to fix the latest discovered security issues but will no longer accept requests for bug fixes and Design Change Requests.
Exchange Server 2016 reached its mainstream end date in October 2020 but is under extended support until October 2025, just like Exchange Server 2019.
The company now provides Microsoft 365 migration information on its documentation site and guidance to help global admins decide the migration path in Exchange Online.
News URL
Related news
- Microsoft confirms memory leak in March Windows Server security update (source)
- Microsoft slammed for lax security that led to China's cyber-raid on Exchange Online (source)
- Microsoft slammed for lax security that led to China's cyber-raid on Exchange Online (source)
- Microsoft fixes Outlook security alerts bug caused by December updates (source)
- Microsoft's March Updates Fix 61 Vulnerabilities, Including Critical Hyper-V Flaws (source)
- Microsoft Copilot for Security prepares for April liftoff (source)
- Microsoft’s Security Copilot Enters General Availability (source)
- 17,000+ Microsoft Exchange servers in Germany are vulnerable to attack, BSI warns (source)
- Germany warns of 17K vulnerable Microsoft Exchange servers exposed online (source)
- These 17,000 unpatched Microsoft Exchange servers are a ticking time bomb (source)