Microsoft SharePoint attack: Officials issue warning about 'active exploitation'
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) posted an alert on its website Sunday, July 20, saying it was aware of "active exploitation" of a security vulnerability that was allowing unauthorized access to on-site SharePoint servers.
The "scope and impact" of the issue was still being assessed, CISA said in the notice posted July 20, but officials said the vulnerability "poses a risk" to organizations that house their own SharePoint servers.
Microsoft, in an alert posted Saturday, July 19, said the vulnerability enables an 'authorized attacker to perform spoofing over a network,' a type of cyberattack in which an attacker attempts to trick a user or system into believing they are a trusted or known source.
"The FBI is aware of the matter, and we are working closely with our federal government and private sector partners," a Microsoft spokesperson told USA TODAY Monday.
SharePoint is used by government agencies and businesses in the U.S. and around the world, as reported by Reuters and the Washington Post, which first reported the attacks.
It was not immediately known who was behind the attack, but a cybersecurity researcher told Reuters on Monday, July 21, it is likely the work of a single actor.
"Based on the consistency of the tradecraft seen across observed attacks, the campaign launched on Friday appears to be a single actor," Rafe Pilling, Director of Threat Intelligence at Sophos, a British cybersecurity firm, told the outlet. "However, it's possible that this will quickly change."
Markets news: US stocks open higher as investors eye more earnings and tariff news
Microsoft SharePoint vulnerability
In its alert about the ongoing attacks on SharePoint servers, Microsoft urged customers to install new security updates.
The company said SharePoint Online in Microsoft 365, stored in the cloud, was not hit by the exploit. The attack is dubbed by experts as "zero day," because, officials said, it was a shock to cybersecurity researchers.
Microsoft's stock price was mostly flat on Monday morning, July 21.
'Customers should apply these updates'
Microsoft reported it issued recommendations to stop attackers from exploiting it.
"Microsoft has released security updates that fully protect customers using SharePoint Subscription Edition and SharePoint 2019 against the risks posed by CVE-2025-53770, and CVE-2025-53771," the post reads. 'Customers should apply these updates immediately to ensure they're protected."
To access Microsoft's link to the updates click here.
USA TODAY has reached out to Microsoft for more information.
Contributing: Reuters
Natalie Neysa Alund is a senior reporter for USA TODAY. Reach her at nalund@usatoday.com and follow her on X @nataliealund.
Hashtags

Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
22 minutes ago
- Yahoo
Rural Asset Finance secures £120m facility backed by BBB guarantee
A new agreement between the British Business Bank and Rural Asset Finance is set to unlock around £120 million in funding for smaller rural and agricultural businesses across the UK. The deal, part of the Bank's ENABLE Guarantee programme, is expected to significantly expand access to competitive finance in the sector. The facility is being supported by funding from NatWest Bank and BCI Capital, with the British Business Bank guaranteeing a portion of NatWest's contribution. The agreement also includes sustainability-linked incentives that could lower borrowing costs if environmental performance targets are met. Michael Strevens of the British Business Bank said the transaction 'builds on the work we have done through the ENABLE Guarantees programme,' and is designed to improve funding access for non-bank lenders like Rural Asset Finance. He added that linking pricing to sustainability goals could lead to 'further expansion of small business lending in sustainable areas, including farm renewable energy installations.' Rural Asset Finance, established in 2019, specialises in providing tailored finance solutions to UK farmers and rural enterprises, combining asset finance and business loans to support modernisation, diversification, and sustainability efforts. Matthew Smart, Managing Director of Rural Asset Finance, described the new facility as a 'highly competitive offering' that puts the company in a strong position to support both advanced food production and alternative income strategies. 'Food production and diversification on UK farms are key to ensuring a healthy, robust future for the industry and the wider rural economy,' he said. NatWest Bank, a key funding partner, emphasised the strategic value of the initiative. Matthew Whittle, Relationship Director at NatWest, said the ENABLE Guarantee would 'help unlock capital, reduce costs and ultimately increase access to competitive funding for agricultural and rural businesses.' BCI Capital's Will Haynes echoed the importance of supporting specialised lenders. 'Rural Asset Finance plays a crucial role in enabling growth and resilience across the UK's agricultural and rural business landscape,' he said, adding that the partnership reflects BCI's commitment to underserved sectors and sustainable growth. The ENABLE Guarantee scheme, administered by the British Business Bank, is designed to encourage increased lending to small and medium-sized enterprises by allowing lenders to reduce the capital needed to support such loans, with the UK Government taking on part of the risk. "Rural Asset Finance secures £120m facility backed by BBB guarantee" was originally created and published by Leasing Life, a GlobalData owned brand. The information on this site has been included in good faith for general informational purposes only. It is not intended to amount to advice on which you should rely, and we give no representation, warranty or guarantee, whether express or implied as to its accuracy or completeness. You must obtain professional or specialist advice before taking, or refraining from, any action on the basis of the content on our site. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Yahoo
22 minutes ago
- Yahoo
Analyst Explains Why He's Bullish on Microsoft (MSFT) Amid ‘AI Eating Software' Trend
Microsoft Corp (NASDAQ:MSFT) is one of the . Ben Reitzes, Melius Research managing director, said in a recent program on CNBC that SaaS companies are under threat amid the rise of AI agents. He named Microsoft Corp (NASDAQ:MSFT) among the companies set to thrive under the AI revolution. 'We just put out a piece raising our targets again on Microsoft and Oracle, and you might be like, 'Oh, that's great news, Ben.' Well, I mean, obviously we've been saying it for a long time, but their revenues are accelerating while all the SaaS guys are decelerating. This is not that hard. You know, I was there when hardware stocks went to eight times earnings because the cloud ate their lunch. It can always software. It can always get worse. This is a complete reversal of Andreessen and 'software eating the world,' and AI is eating software.' Photo by Kaleidico on Unsplash Wedgewood Partners stated the following regarding Microsoft Corporation (NASDAQ:MSFT) in its second quarter 2025 investor letter: 'Microsoft Corporation (NASDAQ:MSFT) was also a top contributor to portfolio performance during the quarter. The Company showed continued terrific organic revenue growth of +15% and +19% growth in operating income (foreign exchange-neutral, respectively), helped by continued seat growth in Office365. It also showed a key acceleration in its Azure cloud infrastructure business, driven by demand for AI-compute capacity. We added to our position before the strong rally, given that valuations had contracted to levels that were starting to discount away upside from Microsoft's solid positioning in AI.' While we acknowledge the potential of MSFT as an investment, our conviction lies in the belief that some AI stocks hold greater promise for delivering higher returns and have limited downside risk. If you are looking for an extremely cheap AI stock that is also a major beneficiary of Trump tariffs and onshoring, see our free report on the . READ NEXT: 30 Stocks That Should Double in 3 Years and 11 Hidden AI Stocks to Buy Right Now. Disclosure: None. This article is originally published at Insider Monkey. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Yahoo
22 minutes ago
- Yahoo
Defense contractor L3Harris raises 2025 outlook on steady demand
(Reuters) -U.S. defense contractor L3Harris Technologies raised its annual forecast and beat Wall Street expectations for second-quarter results on Thursday, driven by resilient demand amid rising geopolitical tensions. Shares of the company rose 2% in premarket trading. Demand for arms and military equipment has ballooned in the face of a protracted Russia-Ukraine war and tensions in the Middle East, boosting sales at L3Harris and rivals. The company, which makes solid rocket motors on the anti-tank Javelin missile system, expects about $21.75 billion in annual revenue, up from its prior forecast of between $21.4 billion and $21.7 billion. It projected an adjusted profit of between $10.40 and $10.60 per share for the year, up from its previous expectation of $10.30 and $10.50. The company's adjusted profit of $2.78 per share in the second quarter topped expectation of $2.50, according to data compiled by LSEG. The defense contractor posted a revenue increase of 2.4% to $5.43 billion, beating estimates of $5.32 billion. Sign in to access your portfolio