Microsoft has published a new tool that installs a mitigation for the CVE-2021-26855 Exchange ProxyLogon flaw.
The number of Exchange servers vulnerable to the ProxyLogon flaws is continuing to drop, but there are still more than 60,000 online.
Attackers are installing the DearCry ransomware on some vulnerable Exchange servers.
Microsoft has patched a zero day in Internet Explorer and Edge that was used in attacks against security researchers.
Attacks on the Exchange server flaws disclosed last week are being exploited by multiple threat actors and targeting a wide range of companies.