What to know about a vulnerability being exploited on Microsoft SharePoint servers
Empower your mind, elevate your skills
Microsoft has issued an emergency fix to close off a vulnerability in Microsoft's SharePoint software that hackers have exploited to carry out widespread attacks on businesses and at least some federal agencies.The company issued an alert to customers Saturday saying it was aware of the zero-day exploit being used to conduct attacks and that it was working to patch the issue. Microsoft updated its guidance Sunday with instructions to fix the problem for SharePoint Server 2019 and SharePoint Server Subscription Edition. Engineers were still working on a fix for the older SharePoint Server 2016 software.What is a zero-day exploit? A zero-day exploit is a cyberattack that takes advantage of a previously unknown security vulnerability. "Zero-day" refers to the fact that the security engineers have had zero days to develop a fix for the vulnerability.According to the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the exploit affecting SharePoint is "a variant of the existing vulnerability CVE-2025-49706 and poses a risk to organizations with on-premise SharePoint servers."Security researchers warn that the exploit, reportedly known as "ToolShell," is a serious one and can allow actors to fully access SharePoint file systems, including services connected to SharePoint, such as Teams and OneDrive.Google's Threat Intelligence Group warned that the vulnerability may allow bad actors to "bypass future patching."How widespread is the impact? Eye Security said in its blog post that it scanned over 8,000 SharePoint servers worldwide and discovered that at least dozens of systems were compromised. The cybersecurity company said the attacks likely began on July 18.Although the scope of the attack is still being assessed, CISA warned that the impact could be widespread and recommended that any servers impacted by the exploit should be disconnected from the internet until they are patched.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Deccan Herald
3 hours ago
- Deccan Herald
OpenAI and UK sign new AI agreement to boost security, infrastructure
The Microsoft-backed AI startup will also expand its London office, building up its research and engineering teams at OpenAI's first international location opened two years ago, according to a statement.
Time of India
4 hours ago
- Time of India
Microsoft suggests 'new plan' to improve Windows 11 performance
Microsoft is seeking feedback on "any slow or sluggish performance" in Windows 11. This request from the tech giant comes as the company continues to address user complaints about its operating system's performance since its October 2021 debut. A recently released test build of Windows 11 includes a method to automatically collect performance logs. This initiative aims to gather specific data to help resolve ongoing issues. Since its launch, Windows 11 has faced criticism regarding its performance on certain hardware, including reports of no improvement in gaming on new hybrid performance CPUs and general perceptions of it being less responsive than Windows 10. However, it's important to note that Microsoft has previously issued updates in an attempt to rectify these problems. What feedback Microsoft is asking from developers In a blog post announcing the rollout of the latest Windows 11 Insider Preview Build, Microsoft says: 'Windows Insiders are encouraged to provide feedback when experiencing PC issues related to slow or sluggish performance, allowing Feedback Hub to automatically collect these logs, which will help us root cause issues faster.' This updated logging system is part of Microsoft's broader effort to enhance Windows performance and may bring additional reliability and efficiency improvements in the upcoming 25H2 update , expected later this year. In 2023, Microsoft introduced several performance-related changes to Windows 11, including faster response in the Taskbar, adjustments to the notifications area and quick settings, and reduced impact from startup apps. The 24H2 update also appeared to improve performance, especially on older devices. For the 25H2 update, Microsoft is also shifting focus to driver quality. Developers will now be required to perform static analysis as part of the driver certification process, which is intended to help identify possible issues in driver code before deployment. AI Masterclass for Students. Upskill Young Ones Today!– Join Now
Deccan Herald
5 hours ago
- Deccan Herald
Microsoft server hack hit about 100 victims, researchers say
Microsoft on Saturday issued an alert about 'active attacks' on self-managed SharePoint servers, which are widely used by government agencies and businesses to share documents within organisations.
