Microsoft SharePoint attack: Officials issue warning about 'active exploitation'
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) posted an alert on its website Sunday, July 20, saying it was aware of "active exploitation" of a security vulnerability that was allowing unauthorized access to on-site SharePoint servers.
The "scope and impact" of the issue was still being assessed, CISA said in the notice posted July 20, but officials said the vulnerability "poses a risk" to organizations that house their own SharePoint servers.
Microsoft, in an alert posted Saturday, July 19, said the vulnerability enables an 'authorized attacker to perform spoofing over a network,' a type of cyberattack in which an attacker attempts to trick a user or system into believing they are a trusted or known source.
"The FBI is aware of the matter, and we are working closely with our federal government and private sector partners," a Microsoft spokesperson told USA TODAY Monday.
SharePoint is used by government agencies and businesses in the U.S. and around the world, as reported by Reuters and the Washington Post, which first reported the attacks.
It was not immediately known who was behind the attack, but a cybersecurity researcher told Reuters on Monday, July 21, it is likely the work of a single actor.
"Based on the consistency of the tradecraft seen across observed attacks, the campaign launched on Friday appears to be a single actor," Rafe Pilling, Director of Threat Intelligence at Sophos, a British cybersecurity firm, told the outlet. "However, it's possible that this will quickly change."
Markets news: US stocks open higher as investors eye more earnings and tariff news
Microsoft SharePoint vulnerability
In its alert about the ongoing attacks on SharePoint servers, Microsoft urged customers to install new security updates.
The company said SharePoint Online in Microsoft 365, stored in the cloud, was not hit by the exploit. The attack is dubbed by experts as "zero day," because, officials said, it was a shock to cybersecurity researchers.
Microsoft's stock price was mostly flat on Monday morning, July 21.
'Customers should apply these updates'
Microsoft reported it issued recommendations to stop attackers from exploiting it.
"Microsoft has released security updates that fully protect customers using SharePoint Subscription Edition and SharePoint 2019 against the risks posed by CVE-2025-53770, and CVE-2025-53771," the post reads. 'Customers should apply these updates immediately to ensure they're protected."
To access Microsoft's link to the updates click here.
USA TODAY has reached out to Microsoft for more information.
Contributing: Reuters
Natalie Neysa Alund is a senior reporter for USA TODAY. Reach her at nalund@usatoday.com and follow her on X @nataliealund.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Business Insider
an hour ago
- Business Insider
U.S., China discuss tariffs in effort to extend truce, Reuters says
U.S. and Chinese negotiators are meeting to tackle economic disputes, aiming to extend a truce meant to keep higher tariffs at bay, David Lawder of Reuters reports. China currently faces an August 12 deadline to reach a tariff agreement with President Donald Trump's administration. Elevate Your Investing Strategy: Take advantage of TipRanks Premium at 50% off! Unlock powerful investing tools, advanced data, and expert analyst insights to help you invest with confidence.
Business Insider
2 hours ago
- Business Insider
Tesla receives shareholder proposals related to xAI investment, Reuters says
Tesla (TSLA) has received several shareholder proposals related to its plan to invest in CEO Elon Musk's xAI, Reuters reports. Elevate Your Investing Strategy: Take advantage of TipRanks Premium at 50% off! Unlock powerful investing tools, advanced data, and expert analyst insights to help you invest with confidence. Published first on TheFly – the ultimate source for real-time, market-moving breaking financial news. Try Now>>
Yahoo
2 hours ago
- Yahoo
1 Super Artificial Intelligence (AI) Stock Billionaire Bill Gates Has 25% of His Foundation's Portfolio Invested In
Key Points The Gates Foundation holds a substantial number of Microsoft shares. Microsoft has become a top player in offering artificial intelligence models. However, the stock is starting to appear somewhat pricey compared to its peers. 10 stocks we like better than Microsoft › Bill Gates is a well-known entrepreneur, having co-founded Microsoft (NASDAQ: MSFT) in the mid-1970s. This made him a fortune, and he constantly ranks among the richest people in the world. He established the Gates Foundation Trust, one of the world's most well-funded foundations. By examining its holdings, investors can gain insight into what one of the world's brightest minds considers top stock picks, and they've identified an AI stock that has been a stellar performer in recent years. In fact, the stock has more than doubled since the start of 2023 alone. What is this stock? It's none other than Microsoft. Microsoft is the foundation's top holding This really shouldn't come as a surprise to anyone. Bill Gates runs the fund, so he will fill it with a company that he thinks will succeed. Most of this stock was donated from Gates' wealth; however, if the foundation didn't think Microsoft was set to succeed, they would have sold it a long time ago and moved on to something else. About 25% of the foundation's worth is tied up in Microsoft stock, valued at around $10.7 billion. That's a concentrated bet for a charitable foundation, but it has worked out well with Microsoft's recent success. Microsoft has emerged as a top AI pick due to its role as a facilitator in the space. It isn't developing its own generative AI model; instead, it's offering many of the leading ones on its cloud computing platform, Azure. Developers can choose from OpenAI's ChatGPT, a leading option, Meta Platforms' Llama, DeepSeek's R1 (a more affordable alternative from China), or xAI's Grok, a company founded by Elon Musk. By offering a wide range of generative AI models, Microsoft isn't locking its clients into a single provider. This has made Azure a top choice for building AI models on, which is why it has outgrown its peers in recent quarters. We'll get an update on how the other cloud computing providers -- namely Alphabet's Google Cloud and Amazon's Amazon Web Services (AWS) -- in the next few weeks, but I'd be shocked if Azure isn't growing quicker than they are. Azure has become a top platform for building AI applications, but has it done enough to make Microsoft a top buy now? Microsoft's stock is starting to look a bit pricey for its growth If Microsoft derived all of its revenue from Azure, I'd be a buyer at nearly any price. However, Microsoft has other product lines that aren't growing as quickly, which slows the company's overall growth pace. In its latest period -- the third quarter of fiscal 2025 -- overall revenue rose to $70.1 billion at a 13% pace. While Microsoft doesn't break out the revenue generated by Azure, we know from prior information that it accounts for over half of the Intelligent Cloud division, which brought in $26.8 billion during Q3 (ending March 31). They do provide Azure's growth rate, which was Microsoft's top-performing division in Q3, rising 33% year over year. Microsoft's diluted earnings per share also rose an impressive 18%, but is that fast enough to justify its valuation? Microsoft trades at nearly 40 times trailing earnings, which is a very expensive price tag and exceeds its recent highs reached during the AI arms race period. Wall Street analysts project $15.14 in earnings per share for fiscal 2026 (ending June 30, 2026), which indicates the stock trades at 33.7 times forward earnings. That's still a high valuation, and investors need to start being a bit cautious when stocks reach that level, especially when they're growing at Microsoft's pace. Yes, Microsoft is growing faster than the market, but it's not growing as fast as some of its peers. Take Meta Platforms, for example. It trades at 28 times trailing earnings and grew revenue at a 16% pace during its last quarter with 36% earnings-per-share growth. That's a cheaper stock growing faster, which should cause Microsoft investors to question whether it's the best big tech stock to be in right now. Numerous other big tech stocks have better growth numbers and cheaper valuations than Microsoft. Although it's a dominant company, it's starting to look a bit expensive compared to its peers. Should you buy stock in Microsoft right now? Before you buy stock in Microsoft, consider this: The Motley Fool Stock Advisor analyst team just identified what they believe are the for investors to buy now… and Microsoft wasn't one of them. The 10 stocks that made the cut could produce monster returns in the coming years. Consider when Netflix made this list on December 17, 2004... if you invested $1,000 at the time of our recommendation, you'd have $636,628!* Or when Nvidia made this list on April 15, 2005... if you invested $1,000 at the time of our recommendation, you'd have $1,063,471!* Now, it's worth noting Stock Advisor's total average return is 1,041% — a market-crushing outperformance compared to 183% for the S&P 500. Don't miss out on the latest top 10 list, available when you join Stock Advisor. See the 10 stocks » *Stock Advisor returns as of July 21, 2025 Keithen Drury has positions in Alphabet, Amazon, and Meta Platforms. The Motley Fool has positions in and recommends Alphabet, Amazon, Meta Platforms, and Microsoft. The Motley Fool recommends the following options: long January 2026 $395 calls on Microsoft and short January 2026 $405 calls on Microsoft. The Motley Fool has a disclosure policy. 1 Super Artificial Intelligence (AI) Stock Billionaire Bill Gates Has 25% of His Foundation's Portfolio Invested In was originally published by The Motley Fool Sign in to access your portfolio
