The Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to scan their networks again for any signs of compromised on-premises Microsoft Exchange servers. The agencies must report their findings within five days to CISA. The directive also requires that all agencies further harden their Exchange servers by 12:00 PM EDT on Monday, June 28, 2021. CISA also asked agencies that find any evidence of compromise using Microsoft’s new tools to immediately report it “as an incident”””
Source: https://www.bleepingcomputer.com/news/security/cisa-gives-federal-agencies-5-days-to-find-hacked-exchange-servers/