Microsoft detected multiple zero-day exploits being used to plunder on-premise versions of Microsoft Exchange Server in what they claim are “limited and targeted attacks.” But from our research, the spread is much larger.The Huntress team has checked over 2,000 Exchange servers and found ~400 vulnerable. The scary thing is that the majority of these endpoints have antivirus or EDR solutions installed—meaning the exploits slipped past most preventive security products.