Microsoft has reported two new vulnerabilities (CVE-2022-41040 & CVE-2022-41082) affecting on-premises Microsoft Exchange Server 2013, 2016, and 2019.

Microsoft has observed limited, targeted attacks exploiting these vulnerabilities to compromise target systems.

Mitigations for this vulnerability are available; however, a patch is not available at this time.

CVE-2022-41040 is a Server-Side Request Forgery (SSRF) vulnerability while CVE-2022-41082 is a Remote Code Execution (RCE) vulnerability.

Vulnerabilities of this nature have been exploited in the past (such as with ProxyShell) to deliver web shells and perform further attacks including lateral movement within target networks and delivery of malicious payloads (such as ransomware). 

With more than two years of a pandemic behind us, many law firms – and many other businesses, for that matter – had expected to be back to the office more fully by now. The latest variant of COVID-19 changed those plans. Now, law firms are facing the fact that they must be prepared to be flexible for the foreseeable future. Indeed, the latest geopolitical disruptions in Eastern Europe demonstrate just how deeply uncertain our world remains. In the face of myriad challenges, how can law firm administrators and IT professionals remain nimble? Let's briefly look at key aspects of accessibility, hardware, software, and data security that will help law firms maintain continual operation in the new reality.

We've been asked to share our expertise and predictions by a number of different media outlets in the past month. Here are a few highlights:

As articles detailing shortcuts to upgrade from Windows 10 to Windows 11 proliferate online, many legal professionals have inquired whether they should consider upgrading to Windows 11 now. Given the operating system's recent release, our current recommendation is to defer installing Windows 11 until Microsoft provides additional improvements based upon early adopters' feedback. 

Legal professionals often equate iManage with only document management. What many don’t know is that iManage offers much more. In a reflection of iManage’s “making knowledge work” mission statement, the solution allows you to demonstrate the full value of your experience no matter what device you’re using by giving you the ability to incorporate other sources of analytical and practical data to discover contextually relevant content, expertise, best practices and insights on whatever you’re working on.

Today we'll finish our blog series highlighting the features iManage offers firms beyond just document management.

Legal professionals often equate iManage with only document management. What many don’t know is that iManage offers much more. In a reflection of iManage’s “making knowledge work” mission statement, the solution allows you to demonstrate the full value of your experience no matter what device you’re using by giving you the ability to incorporate other sources of analytical and practical data to discover contextually relevant content, expertise, best practices and insights on whatever you’re working on.

Today we'll discuss two more products offered by iManage that can help legal professionals work securely, collaboratively and intelligently to achieve their goals. 

Legal professionals often equate iManage with only document management. What many don’t know is that iManage offers much more. In a reflection of iManage’s “making knowledge work” mission statement, the solution allows you to demonstrate the full value of your experience no matter what device you’re using by giving you the ability to incorporate other sources of analytical and practical data to discover contextually relevant content, expertise, best practices and insights on whatever you’re working on.

Today we'll discuss two more products offered by iManage that can help legal professionals work collaboratively and intelligently to achieve their goals. 

Legal professionals often equate iManage with only document management. What many don’t know is that iManage offers much more. In a reflection of iManage’s “making knowledge work” mission statement, the solution allows you to demonstrate the full value of your experience no matter what device you’re using by giving you the ability to incorporate other sources of analytical and practical data to discover contextually relevant content, expertise, best practices and insights on whatever you’re working on.

Today we'll discuss the fourth and fifth of twelve products offered by iManage that can help legal professionals work collaboratively and intelligently to achieve their goals. 

Legal professionals often equate iManage with only document management. What many don’t know is that iManage offers much more. In a reflection of iManage’s “making knowledge work” mission statement, the solution allows you to demonstrate the full value of your experience no matter what device you’re using by giving you the ability to incorporate other sources of analytical and practical data to discover contextually relevant content, expertise, best practices and insights on whatever you’re working on.

Today we'll discuss the third of twelve products offered by iManage that can help legal professionals work collaboratively and intelligently to achieve their goals. 

Legal professionals often equate iManage with only document management. What many don’t know is that iManage offers much more. In a reflection of iManage’s “making knowledge work” mission statement, the solution allows you to demonstrate the full value of your experience no matter what device you’re using by giving you the ability to incorporate other sources of analytical and practical data to discover contextually relevant content, expertise, best practices and insights on whatever you’re working on.

Today we'll discuss the second of twelve products offered by iManage that can help legal professionals work collaboratively and intelligently to achieve their goals. 

Legal professionals often equate iManage with only document management. What many don’t know is that iManage offers much more. In a reflection of iManage’s “making knowledge work” mission statement, the solution allows you to demonstrate the full value of your experience no matter what device you’re using by giving you the ability to incorporate other sources of analytical and practical data to discover contextually relevant content, expertise, best practices and insights on whatever you’re working on.

Legal professionals often equate iManage with only document management. What many don’t know is that iManage offers much more. In a reflection of iManage’s “making knowledge work” mission statement, the solution allows you to demonstrate the full value of your experience no matter what device you’re using by giving you the ability to incorporate other sources of analytical and practical data to discover contextually relevant content, expertise, best practices and insights on whatever you’re working on.

As vaccines grow plentiful in the U.S., talk of returning to working at offices grows in volume. While surveys indicate the move to remote work is likely here to stay for many legal professionals even after pandemic-related restrictions are lifted, there will undoubtedly be the need and desire for some office-based work. 

We recently asked our legal technology experts for advice on enhancing law firms' cybersecurity in 2021. 

Q: What trends are you seeing with law firm IT security?

A: The biggest trend I see relates to malware and phishing attacks on email systems. This threat has increased significantly since Covid struck the country last year. Most users are still working remotely and by themselves and may not have IT experts readily available to review a potentially suspicious message. End user training is key to fighting these attacks, and ongoing security education must continue with remote workers.