A new threat report shows that APTs are switching up their tactics when exploiting Microsoft services like Exchange and OWA, in order to avoid detection. The report, released Monday, shed light on how actors are leveraging Exchange, Outlook Web Access (OWA) and Outlook on the Web. One advanced persistent threat (APT) group that has been targeting Exchange is what researchers dub BELUGASTURGEON (aka Turla or Whitebear) Researchers say this group operates from Russia, has been active for more than 10 years.
Source: https://threatpost.com/microsoft-exchange-outlook-apts/160273/