Microsoft on Friday warned of active attacks exploiting unpatched Exchange Servers carried out by multiple threat actors. At least 30,000 entities across the U.S. have been compromised by an “unusually aggressive” Chinese group that has set its sights on stealing emails from victim organizations by exploiting previously undisclosed flaws in Exchange Server. The Norwegian National Security Authority has implemented a vulnerability scan of IP addresses in the country to identify vulnerable Exchange servers and “continuously notify these companies” The four security issues in question were eventually patched by Microsoft as part of an emergency update last Tuesday.
Source: https://thehackernews.com/2021/03/microsoft-exchange-cyber-attack-what-do.html