Malicious ISS module exploitation is the latest trend among threat actors targeting Exchange servers, analysts say.