Massive Cyber Espionage Campaign Exploits Microsoft's SharePoint Servers
A significant cyber espionage operation has compromised over 100 organizations via Microsoft SharePoint servers. Discovered by Eye Security and confirmed by Shadowserver Foundation, this zero-day attack targets government and business entities. Microsoft has issued patches, but concerns remain about widespread vulnerability and unidentified perpetrators.
A colossal cyber espionage campaign has targeted Microsoft server software, compromising approximately 100 organizations worldwide, cybersecurity experts reported on Monday. Microsoft alerted users about "active attacks" on SharePoint servers, critical tools used by businesses and governments to exchange documents.
This "zero-day" vulnerability allows hackers to infiltrate these servers, potentially establishing a backdoor for ongoing access. Vaisha Bernard, the chief hacker at Eye Security, discovered the campaign, revealing nearly 100 victims before it became widely known. Bernard noted the potential for other adversaries to exploit this breach but withheld names of the affected entities, citing national security concerns.
The Shadowserver Foundation corroborated the scale of the attack, noting most victims are in the U.S. and Germany, including government organizations. Despite Microsoft's prompt issuance of security updates, the identity of the hacker remains unknown. The FBI is involved in the investigation, while the UK's National Cyber Security Center acknowledged limited targeting in the region.
(With inputs from agencies.)
ALSO READ
Chinese Hackers Intensify Cyber Espionage on Taiwanese Semiconductor Industry
Microsoft's Urgent Patch for SharePoint Vulnerability
Emergency Fix Released: Microsoft Battles Zero-Day Vulnerability in SharePoint
Cyber Havoc: Aeroflot Flights Grounded by Pro-Ukrainian Hackers
Cyber Chaos: Belarusian Hackers Disrupt Russia's Aeroflot
Google News