US Cybersecurity and Infrastructure Security Agency says no federal civilian agencies have been compromised by ongoing attacks targeting Microsoft Exchange servers. CISA officials said that, so far, there is no evidence of US federal civilian civilian agencies compromised during ongoing attacks. Most Exchange servers have already been patched across federal agencies’ networks after CISA’s directive one week ago. The directive ordered the agencies to urgently update or disconnect their Microsoft Exchange on-premises servers and check their networks for indicators of compromise. A Vietnamese security researcher publicly shared a (mostly) working ProxyLogon proof-of-concept exploit (the PoC has now been removed from the GitHub repository where it was published)
Source: https://www.bleepingcomputer.com/news/security/cisa-no-federal-civilian-agency-hacked-in-exchange-attacks-so-far/