Aktuelle News aus der Microsoft Dynamics Welt und von TSO-DATA
Aktuelle News aus der Microsoft Dynamics Welt und von TSO-DATA
Aktuelle News aus der Microsoft Dynamics Welt und von TSO-DATA

MS Exchange server security vulnerability - obligation to report to data protection authority

In the context of the security vulnerabilities in on-premises operated and externally accessible Microsoft Exchange servers (not affected are the online accessible M365 Exchange servers), data protection authorities point out that there may be an obligation to notify the competent authority according to Art. 33 DSGVO.

The necessity of the notification may depend on your federal state. In NRW, the data protection authority must be notified if a data leak or manipulation of personal data has occurred or cannot be ruled out with sufficient certainty. In Bavaria and Lower Saxony, the rules are even stricter. Here, the obligation to report already exists if the security update provided by Microsoft on 5 March has not been installed by 9 March. The data protection authorities agree that notification is mandatory if there is evidence of unambiguous access.


The security update

Microsoft provides a patch that closes critical gaps in Exchange Server 2019, 2016, 2013 and 2010 and calls for externally accessible Exchange Servers to be updated immediately. Since affected computers may still be potentially infiltrated even after the patch, it is important to track and recognise the possible attack paths. You can find information from Microsoft here.

Do you have questions about the security gap and need further information or short-term support? Don't hesitate, contact our experts directly now.

Marvin Hitzfeld 
+49 (541) 1395-94 

TSO-DATA News and Events - you might also be interested in this:

Innovation Forum 2024: AI power for day-to-day business

Artificial intelligence (AI) is developing rapidly - our AI Day offers a comprehensive insight into this omnipresent topic.

continue reading...

TSO-DATA Solution Days 2024 - an insight into the future of AI

The Solution Days on April 17 and 18, 2024 offered over 130 participants a comprehensive platform and outstanding added value under the motto "AI Revolution: Innovation today, success tomorrow".

continue reading...

Power BI: The most important innovations in April 2024

In April 2024, Microsoft released several updates for new functions and visuals in Power BI.

continue reading...