Cybercriminals target Microsoft Exchange data for several reasons. Firstly, Microsoft Exchange is widely used by organizations for email communication, making it a valuable target for attackers seeking to gain unauthorized access to sensitive information. Additionally, Exchange servers store a wealth of valuable data, including emails, contacts, calendars and attachments. These assets can be exploited for financial gain (via ransomware) or used in further targeted attacks such as AI-accelerated ones. For example, adversaries abuse AI to craft more convincing emails and equipped with contacts from Microsoft Exchange, these cybercriminals can disguise themselves as legitimate senders and dupe unsuspecting victims. Moreover, successful breaches of Exchange servers can give cybercriminals an edge by allowing them to move laterally and escalate their attack on other systems and resources. The potential for a high payout, access to mounds of information and the opportunity to scale attacks with minimal effort makes Microsoft Exchange an attractive target for cybercriminals.