HealthcareCISO

At least 10 advanced persistent threat (APT) hacking groups are targeting unpatched, on-prem Microsoft Exchange servers, in an effort to exploit the vulnerability and take control of the impacted device, according to recent ESET data.

Microsoft and RiskIQ telemetry data found that of the nearly 400,000 Exchange servers vulnerable to four zero-day exploits, just 82,000 are left to be patched.

The out-of-band security patches were issued at the beginning of the month. At the time, the Department of Homeland Security Cybersecurity and Infrastructure Security Agency warned that the flaws were already under active exploit in the wild.

The vulnerabilities are found in...