The company has released security updates to protect customers running Exchange Server, and encourages all Exchange Server customers to apply these updates immediately.
Called "Hafnium," it operates from China and is attacking infectious disease researchers, law firms, higher education institutions, defence contractors, policy think tanks and NGOs in the US for the purpose of exfiltrating information.