A newly discovered malware has been put to use in the wild at least since March 2021 to backdoor Microsoft Exchange servers belonging to a wide range of entities worldwide, with infections lingering in 20 organizations as of June 2022. DubbedSessionManager, the malicious tool masquerades as a module for Internet Information Services (IIS), a web server software for Windows systems, after