best response confirmed by Jim_Hill (Occasional Contributor)
Solution

Best configure an authentication policy in Exchange, it stops those attempts before they even hit AAD: https://docs.microsoft.com/en-us/exchange/clients-and-mobile-in-exchange-online/disable-basic-authen...

www.000webhost.com