Aktuelle News aus der Microsoft Dynamics Welt und von TSO-DATA
Aktuelle News aus der Microsoft Dynamics Welt und von TSO-DATA
Aktuelle News aus der Microsoft Dynamics Welt und von TSO-DATA
18.03.2021

MS Exchange server security vulnerability - obligation to report to data protection authority

In the context of the security vulnerabilities in on-premises operated and externally accessible Microsoft Exchange servers (not affected are the online accessible M365 Exchange servers), data protection authorities point out that there may be an obligation to notify the competent authority according to Art. 33 DSGVO.

The necessity of the notification may depend on your federal state. In NRW, the data protection authority must be notified if a data leak or manipulation of personal data has occurred or cannot be ruled out with sufficient certainty. In Bavaria and Lower Saxony, the rules are even stricter. Here, the obligation to report already exists if the security update provided by Microsoft on 5 March has not been installed by 9 March. The data protection authorities agree that notification is mandatory if there is evidence of unambiguous access.

 

The security update

Microsoft provides a patch that closes critical gaps in Exchange Server 2019, 2016, 2013 and 2010 and calls for externally accessible Exchange Servers to be updated immediately. Since affected computers may still be potentially infiltrated even after the patch, it is important to track and recognise the possible attack paths. You can find information from Microsoft here.

Do you have questions about the security gap and need further information or short-term support? Don't hesitate, contact our experts directly now.

TSO-DATA 
Marvin Hitzfeld 
it-infrastruktur[at]tso[dot]de
+49 (541) 1395-94 


TSO-DATA News and Events - you might also be interested in this:

TSO-DATA donates to the "Haus am Schlehenbusch" youth welfare facility

TSO-DATA donates to the "Haus am Schlehenbusch" youth welfare facility

Once again, 4,000 euros were handed over to the "Leitfunke" support association of the Haus am Schlehenbusch for the young people in the house.

continue reading...
Emotet rages again

Emotet rages again

After a coordinated takedown earlier this year, the Emotet malware has now resurfaced - the most important immediate measure: sensitise employees.

continue reading...
Business Central Online - ERP 100% from the Cloud

Business Central Online - ERP 100% from the Cloud

In our webcast on 26.11.2021 you will learn about the advantages of the smart ERP solution Microsoft Dynamics 365 Business Central, experience the current version 19 live in the system. Register now!

continue reading...