If your workplace is using this, you might want to double-check everything.

I don’t take the “but nobody has used it yet” very seriously.

Somebody put it there for a reason. There’s zero probability that it hasn’t been used by those behind it.

And, well, no surprise that nobody’s reported it being used. Few organisations have a clue about the amount of malware on their estate, even when that malware is over a decade old, is responsible for more network sessions than anything other than their DNS servers or even is responsible for more network traffic than anything else.

That’s pretty much what I thought. Such a strong statement that “nobody has actually used it”, when it would be difficult to prove such a thing. How many installs did they check on, and how?

Despite what Microsoft claims, I seriously doubt some of these major problems “just happened”.