Global SharePoint Cyberattack Exposes Widespread Vulnerabilities
A major cyberespionage operation targeting Microsoft's SharePoint server software has compromised about 100 organizations worldwide. The operation exploits a zero-day vulnerability, allowing hackers to install backdoors on affected servers. Microsoft has released security updates, but the extent of the breach remains unclear, with several key sectors targeted.
A major cyberespionage operation targeting Microsoft's SharePoint server software has now compromised approximately 100 organizations, researchers revealed on Monday. This campaign exploits a 'zero-day' vulnerability, giving cybercriminals the ability to infiltrate vulnerable servers and possibly install backdoors for ongoing access.
Eye Security's chief hacker, Vaisha Bernard, alongside the ShadowServer Foundation, uncovered nearly 100 victims of this espionage activity before the hacking method became widely known. According to Bernard, the breach's impact is still unfolding as other potential adversaries may have leveraged this vulnerability.
Microsoft has responded by issuing security updates and encouraging customers to install them promptly. Meanwhile, the FBI and Britain's National Cyber Security Center are investigating, having identified additional potential targets. Significant industries, including finance, healthcare, and government entities, are among those affected, highlighting the global scale and severity of the incident.
(With inputs from agencies.)
ALSO READ
Pandemic deepened economic vulnerability but boosted diet diversity in Zambia
Nigerian Households Struggle as Conflict and Floods Deepen Economic Vulnerability
Czech Republic Power Outage Highlights Grid Vulnerability
Southern Hemisphere Birds: Endemism and Vulnerability in a Changing Climate
New cybersecurity breakthrough uses AI and image analysis to stop zero-day attacks in cloud environments
Google News