Microsoft Exchange Server on-premises customers (global)

Microsoft Exchange ProxyLogon (Hafnium)

China-linked group Hafnium chained four Exchange Server zero-days (ProxyLogon) to plant web shells and steal email; after Microsoft's emergency patch, mass exploitation by multiple groups compromised an estimated 60,000+ organisations worldwide.

Victim

Microsoft Exchange Server on-premises customers (global)