Softpedia >News >Security >Server related
Softpedia Homepage   

Trump's Company Runs Outdated Email Servers

Trump Org found running Windows Server 2003 & IIS 6.0

Oct 18, 2016 21:05 GMT  ·  By
Trump Organization found to be running extremely old tech
   Trump Organization found to be running extremely old tech

Donald Trump's company, the Trump Organization, is running seriously outdated software on its email servers, says Kevin Beaumont, an independent security researcher.

Beaumont, who scanned the Trump Organization's servers, says he discovered that their email server was running Windows Server 2003 and IIS 6.0, both deprecated technologies.

In fact, Windows Server 2003 reached end of life (EOL) status in July 2015, meaning Trump Org system administrators had more than a year to update their servers, but didn't.

How ironic, both candidates have issues with "email servers"

The entire situation is extremely worrying and shows a slight indifference from the Trump Organization when it comes to security, especially after the high-profile hacks that have taken place in the last few months.

This includes reported breaches at the Democratic National Committee (DNC), and the Democratic Congressional Campaign Committee (DCCC), but let's not forget the whole "Clinton private email server controversy."

While the Trump Organization doesn't store any political-related information, being a commercial organization that manages Donald Trump's real estate properties, you'd expect the company of a candidate for the presidency of the United States of America to pay more attention to its own security.

This finding comes after at least three separate incidents when the Anonymous hacker collective targeted Trump's private companies.

No MDM or 2FA support

Windows Server 2003 and IIS 6.0 weren't the only issues Beaumont discovered. The researcher says that most software running on the server wasn't patched and updated to the most recent (and secure) version.

There was also no evidence of MDM software or two-factor authentication, two security systems considered de-facto policies for large-scale enterprises.

While until now only the Democrat Party has been in the news as the target of politically-motivated and hacktivist groups, Beaumont's discovery might spark a new series of attacks against Trump's camp.