Microsoft Releases Urgent Fix for Sharepoint Vulnerability Being Used in Global Cyberattacks
Engineers were still working on a fix for the older SharePoint Server 2016 software. Cyber criminals often use zero-day exploits to steal sensitive data and passwords. The vulnerability also could allow hackers to access services connected to SharePoint including OneDrive and Teams. The company said in its blog post that it discovered at least dozens of systems were compromised around the world. Security engineers stated the attacks occurred in waves on July 18 and 19. Although the scope of the attack is still being assessed the US Cybersecurity and Infrastructure Security Agency (CISA) warned that the impact could be widespread and recommended that any servers impacted by the exploit should be disconnected from the internet until they are patched.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Argaam
4 hours ago
- Argaam
GO Telecom inks framework pact with Syrian communications ministry
Etihad Atheeb Telecommunication Co. (GO Telecom) signed today, July 24, a five-year framework agreement with Syria's Ministry of Communications and Technology. The project's total value is expected to reach SAR 1.96 billion, the telco said in a statement to Tadawul. The agreement aims to enhance Syria's digital infrastructure through two data centers, a cybersecurity hub, cloud and disaster recovery systems, and a tech platform to support digital transformation. GO Telecom will train and qualify a ministry-appointed team to manage the project, in line with the technical specifications and obligations outlined in the agreement. The financial mechanism will be executed through separate contracts with the funding entity, GO Telecom noted, adding that the impact cannot yet be assessed and updates will be provided in due course. The actual scope, value, and payment schedule will be determined through work orders added to the agreement later.
Al Arabiya
5 hours ago
- Al Arabiya
Trump says he wants Musk and his companies to thrive in US
President Donald Trump said on Thursday he would not destroy Elon Musk's companies by taking away federal subsidies and said he wants the billionaire tech-entrepreneur's businesses to thrive. 'Everyone is stating that I will destroy Elon's companies by taking away some, if not all, of the large scale subsidies he receives from the US Government. This is not so!' Trump said in a social media post. 'I want Elon, and all businesses within our Country, to THRIVE.' The statement follows Musk's warning to Tesla investors on Wednesday that US government cuts in support for electric vehicle makers could lead to a 'few rough quarters' for the company. Musk spent more than a quarter of a billion dollars to help Trump win November's presidential election and led the Department of Government Efficiency's chaotic effort to slash the budget and cut the federal workforce. The Tesla CEO left the administration in late May to refocus on his tech empire. Trump and Musk fell out shortly afterward when Musk openly denounced the Republican president's tax-cut and spending bill, leading to threats by Trump to cancel billions of dollars worth of federal government contracts with Musk's companies.
Al Arabiya
14 hours ago
- Al Arabiya
Microsoft says some SharePoint server hackers now using ransomware
A cyber-espionage campaign centered on vulnerable versions of Microsoft's server software now involves the deployment of ransomware, Microsoft said in a late Wednesday blog post. In the post, citing 'expanded analysis and threat intelligence,' Microsoft said a group it dubs 'Storm-2603' is using the vulnerability to seed the ransomware, which typically works by paralyzing victims' networks until a digital currency payment is made. The disclosure marks a potential escalation in the campaign, which has already hit at least 400 victims, according to Netherlands-based cybersecurity firm Eye Security. Unlike typical state-backed hacker campaigns, which are aimed at stealing data, ransomware can cause widespread disruption depending on where it lands. The figure of 400 victims represents a sharp rise from the 100 organizations cataloged over the weekend. Eye Security says the figure is likely an undercount. 'There are many more, because not all attack vectors have left artifacts that we could scan for,' said Vaisha Bernard, the chief hacker for Eye Security, which was among the first organizations to flag the breaches. The details of most of the victim organizations have not yet been fully disclosed, but on Wednesday a representative for the National Institutes of Health confirmed that one of the organization's servers had been compromised. 'Additional servers were isolated as a precaution,' he said. The news of the compromise was first reported by the Washington Post. Other outlets said the hacking campaign had breached an even broader range of US agencies. NextGov, citing multiple people familiar with the matter, reported the Department of Homeland Security had been hit, along with more than five to 12 other agencies. Politico, which cited two US officials, said multiple agencies were believed to have been breached. DHS' cyberdefense arm, CISA, did not immediately return a message seeking comment on the reports. Microsoft did not immediately return a message seeking further details on the ransomware angle of the hacking or the reported government victims. The spy campaign began after Microsoft failed to fully patch a security hole in its SharePoint server software, kicking off a scramble to fix the vulnerability when it was discovered. Microsoft and its tech rival, Google-owner Alphabet, have both said Chinese hackers are among those taking advantage of the flaw. Beijing has denied the claim.
