...
...
Next Story

Microsoft warns governments, businesses of SharePoint server attack, recommends updates

In an alert issued on Saturday, Microsoft said the vulnerabilities apply only to SharePoint servers used within organizations.

Published on: Jul 21, 2025 06:03 AM IST
Advertisement

Microsoft has issued an alert about "active attacks" on server software used by government agencies and businesses to share documents within organizations, and it recommended security updates that customers should apply immediately.

SharePoint Online in Microsoft 365, which is in the cloud, was not hit by the attacks. (Reuters/Representational Image)
SharePoint Online in Microsoft 365, which is in the cloud, was not hit by the attacks. (Reuters/Representational Image)

The FBI on Sunday said it is aware of the attacks and is working closely with its federal and private-sector partners, but offered no other details.

In an alert issued on Saturday, Microsoft said the vulnerabilities apply only to SharePoint servers used within organizations. It said that SharePoint Online in Microsoft 365, which is in the cloud, was not hit by the attacks.

The Washington Post, which first reported the hacks, said unidentified actors in the past few days had exploited a flaw to launch an attack that targeted U.S. and international agencies and businesses.

Also read: Microsoft bans China-based engineers from all Pentagon cloud contracts

Microsoft did not immediately respond to a request for comment. In the alert, Microsoft said that a vulnerability "allows an authorized attacker to perform spoofing over a network." It issued recommendations to stop the attackers from exploiting it.

In a spoofing attack, an actor can manipulate financial markets or agencies by hiding the actor's identity and appearing to be a trusted person, organization or website.

Microsoft said on Sunday it issued a security update for SharePoint Subscription Edition, which it said customers should apply immediately.

It said it is working on updates to 2016 and 2019 versions of SharePoint. If customers cannot enable recommended malware protection, they should disconnect their servers from the internet until a security update is available, it said.

 
Get the latest headlines from US news and global updates from Pakistan, Nepal, UK, Bangladesh, Russia and US Iran war Live, get all the latest headlines in one place on Hindustan Times.
Get the latest headlines from US news and global updates from Pakistan, Nepal, UK, Bangladesh, Russia and US Iran war Live, get all the latest headlines in one place on Hindustan Times.
SHARE THIS ARTICLE ON
Hindustantimes wants to start sending you push notifications. Click allow to subscribe