Why are we getting in touch?
We strongly recommend that you disable the servers mentioned in your email if there is no strict business need for them.
Legacy email protocols don’t support crucial security controls like multifactor authentication. They lead to a greater chance of an attacker being able to carry out malicious activity if your organisation is targeted. This is based on a large number of CFC cyber claims and Microsoft’s statistics.
How can I secure my system?
How you should mitigate the risk of enabled legacy protocols depends on whether you are using Exchange Online and a hybrid (Azure) environment or whether you are still strictly using Exchange on-premises.
If you are using Azure, we recommend following Microsoft’s guidance at https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/concept-fundamentals-block-legacy-authentication
Microsoft also has some helpful guidance that we recommend for users of Exchange on-premises at https://docs.microsoft.com/en-us/exchange/hybrid-deployment/block-legacy-auth-2019-hybrid.Unsure? Get in touch with our support team
Questions you might have
To test the presence of these protocols, we simulate the first stages of a connection over any of the protocols. As soon as a response indicating whether these protocols are supported or not is received, the connection is immediately dropped. No attempt to supply credentials ever occurs, and we have taken care to ensure this will not cause negative effects on the server we are testing.
CFC’s claims data shows that customers who continue to support legacy email protocols on their email infrastructure are at a significantly heightened risk of a variety of successful attacks against their organisation. Even if security controls like multifactor authentication are in place, these can be bypassed and are therefore ineffective.
By working with our data science team, we can establish IPs and domains that may be under the control of our clients. Whilst these have been shown to be highly accurate methodologies, it is likely there are some incorrect attributions. If you feel this is the case, please let us know and we can correct our records accordingly.