Microsoft patches have been applied to 92% of all internet-facing Exchange servers affected by the ProxyLogon vulnerabilities. The development, a 43% improvement from the previous week, caps off a whirlwind of espionage and malware campaigns that hit thousands of companies worldwide. As many as 10 advanced persistent threat (APT) groups opportunistically moved quickly to exploit the bugs. The release of public proof-of-concept exploits fanned a feeding frenzy of infections, opening the door for escalating attacks like ransomware and hijacking web shells.
Source: https://thehackernews.com/2021/03/black-kingdom-ransomware-hunting.html