Microsoft Exchange Servers that are affected by a remote code execution vulnerability continue to be a target for malicious cyber attackers. This vulnerability is known as CVE-2020-0688.
Microsoft has provided software patches for various affected products in February 2020. However, advanced cyber attackers are continuously targeting unpatched servers.
Microsoft has since released an advisory on CVE-2020-0688:
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0688
The Guyana National CIRT recommends users and administration to review these patches and apply them where necessary, as soon as possible.
References