Microsoft Says China-Linked Group Targets Exchange Email (2)

Microsoft Corp. is urging customers to download software patches after state-sponsored hackers based in China broke into some customers’ copies of its software for email, contacts and calendar using multiple previously undiscovered flaws.

The attackers used the vulnerabilities to hack into Microsoft Exchange Server, allowing them to break into email accounts and install malware to “facilitate long-term access to victim environments,” Microsoft said Tuesday.

Microsoft released patches for the flaws in a blog post announcing the attack. “Microsoft has detected multiple 0-day exploits being used to attack on-premises versions of Microsoft Exchange Server in limited and targeted attacks,” the blog ...