CVE-2021-26855 Exploit Activity found in proxy log reported by running Test-ProxyLogon.ps1
Hi. After running the ps1 file possible suspicious activity was mentioned in the http proxy log. An extenal security company are now looking at the mail server and have said that are domain may have been compromised and that it will be the whole network will have to be taken down and all clients/servers reinstalled ? Do you agree with this senario ? I was going to just to patch the exfhange server and run the eomt tool to scan and hopefully fix any changes.