Executable file posting from external source By SIEM

Home Forums Messaging Software Exchange 2019 Executable file posting from external source By SIEM

Viewing 1 post (of 1 total)
  • Author
    Posts

  • isynergy
    Participant
    #657005

    We facing strange behaviour that we received the below URI Stem (/ews/First.Surname..Domain.com/exchange.asmx/WSSecurity) with HTTP status 200 (The request has succeeded) and the source is from IP 52.96.18.205 (MICROSOFT-CORP-MSN-AS-BLOCK)

    The Current Installed Version is Exchange Server 2019 CU8 with Security Patch KB5001779

    I found the below URL
    https://docs.microsoft.com/en-us/microsoft-365/enterprise/urls-and-ip-address-ranges

    Please advise about this behaviour

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.

External Sharing and Guest User Access in Microsoft 365 and Teams

This eBook will dive into policy considerations you need to make when creating and managing guest user access to your Teams network, as well as the different layers of guest access and the common challenges that accompany a more complicated Microsoft 365 infrastructure.

You will learn:

  • Who should be allowed to be invited as a guest?
  • What type of guests should be able to access files in SharePoint and OneDrive?
  • How should guests be offboarded?
  • How should you determine who has access to sensitive information in your environment?

Sponsored by: