Microsoft is reportedly looking into reports of a new zero-day bug abused to hack Exchange servers which were later used to launch Lockbit ransomware attacks. Recently, two more zero-days tracked under the moniker ProxyNotShell (CVE-2022-41040 and CVE-2022-41082) were chained by attackers to gain remote code execution on servers with elevated privileges.