logo
Microsoft Releases Urgent Fix for Sharepoint Vulnerability Being Used in Global Cyberattacks

Microsoft Releases Urgent Fix for Sharepoint Vulnerability Being Used in Global Cyberattacks

Al Arabiya7 days ago
Microsoft has issued an emergency fix to close off a vulnerability in Microsoft's SharePoint software that hackers have exploited to carry out widespread attacks on businesses and at least some federal agencies. The company issued an alert to customers Saturday saying it was aware of the zero-day exploit—where hackers take advantage of a previously unknown vulnerability—being used to conduct attacks and that it was working to patch the issue. Microsoft updated its guidance Sunday with instructions to fix the problem for SharePoint Server 2019 and SharePoint Server Subscription Edition.
Engineers were still working on a fix for the older SharePoint Server 2016 software. Cyber criminals often use zero-day exploits to steal sensitive data and passwords. The vulnerability also could allow hackers to access services connected to SharePoint including OneDrive and Teams. The company said in its blog post that it discovered at least dozens of systems were compromised around the world. Security engineers stated the attacks occurred in waves on July 18 and 19. Although the scope of the attack is still being assessed the US Cybersecurity and Infrastructure Security Agency (CISA) warned that the impact could be widespread and recommended that any servers impacted by the exploit should be disconnected from the internet until they are patched.
Orange background

Try Our AI Features

Explore what Daily8 AI can do for you:

Comments

No comments yet...

Related Articles

The Tea app was intended to help women date safely. Then it got hacked
The Tea app was intended to help women date safely. Then it got hacked

Al Arabiya

timea day ago

  • Al Arabiya

The Tea app was intended to help women date safely. Then it got hacked

Tea, a provocative dating app designed to let women anonymously ask or warn each other about men they'd encountered, rocketed to the top spot on the US Apple App Store this week. On Friday, the company behind the app confirmed it had been hacked: Thousands of images, including selfies, were leaked online. 'We have engaged third-party cybersecurity experts and are working around the clock to secure our systems,' San Francisco-based Tea Dating Advice Inc. said in a statement. The app and the breach highlight the fraught nature of seeking romance in the age of social media. Here's what to know: Tea was meant to help women date safely. Tea founder Sean Cook, a software engineer who previously worked at Salesforce and Shutterfly, says on the app's website that he founded the company in 2022 after witnessing his own mother's terrifying experiences. Cook said they included unknowingly dating men with criminal records and being catfished – deceived by men using false identities. Tea markets itself as a safe way for women to anonymously vet men they might meet on dating apps such as Tinder or Bumble – ensuring that the men are who they say they are, not criminals, and not already married or in a relationship. It's been compared to the Yelp of dating. In an Apple Store review, one woman wrote that she used a Tea search to investigate a man she'd begun talking to and discovered over 20 red flags, including serious allegations like assault and recording women without their consent. She said she cut off communication. 'I can't imagine how things could've gone had I not known,' she wrote. A surge in social media attention over the past week pushed Tea to the No. 1 spot at the US Apple Store as of July 24, according to Sensor Tower, a research firm. In the seven days from July 17-23, Tea downloads shot up 525 percent compared to the week before. Tea said in an Instagram post that it had reached 4 million users. Tea has been criticized for invading men's privacy. A female columnist for The Times of London newspaper who signed into the app on Thursday called Tea a 'man-shaming' site and complained that 'this is simply vigilante justice entirely reliant on the scruples of anonymous women.' 'With Tea on the scene, what man would ever dare date a woman again?' It's unclear what legal recourse an aggrieved man might have if he feels he's been defamed or had his privacy violated on Tea or a similar social media platform. In May, a federal judge in Illinois threw out an invasion-of-privacy lawsuit by a man who'd been criticized by women in the Facebook chat group 'Are We Dating the Same Guy,' Bloomberg Law reported. The breach exposed thousands of selfies and photo IDs. In its statement, Tea reported that about 72,000 images were leaked online, including 13,000 images of selfies or photo identification that users submitted during account verification. Another 59,000 images that were publicly viewable in the app from posts, comments, and direct messages were also accessed, according to the company's statement. No email addresses or phone numbers were exposed, the company said, and the breach only affects users who signed up before February 2024. 'At this time, there is no evidence to suggest that additional user data was affected. Protecting Tea users' privacy and data is our highest priority,' Tea said. It said users did not need to change their passwords or delete their accounts. 'All data has been secured.'

Company involved in Coldplay KissCam drama hires Gwyneth Paltrow as spokesperson
Company involved in Coldplay KissCam drama hires Gwyneth Paltrow as spokesperson

Al Arabiya

timea day ago

  • Al Arabiya

Company involved in Coldplay KissCam drama hires Gwyneth Paltrow as spokesperson

Astronomer – the company whose CEO resigned after being caught on a KissCam at a Coldplay rock concert embracing a woman who was not his wife – is trying to move on from the drama with someone who knows the band pretty well. Actress Gwyneth Paltrow, who was married to Coldplay's frontman Chris Martin for 13 years, announced Friday on X that she has been hired by Astronomer as a spokesperson. Astronomer, a tech company based in New York, found itself in an uncomfortable spotlight when two of its executives were caught on camera in an intimate embrace at a Coldplay concert – a moment that was then flashed on a giant screen in the stadium. CEO Andy Byron and human resource executive Kristin Cabot were caught by surprise when Martin asked the cameras to scan the crowd during a concert earlier this month. 'Either they're having an affair or they're just very shy,' Martin joked when the couple appeared on screen and quickly tried to hide their faces. In a short video, the 'Shakespeare in Love' and 'Ironman' star said she had been hired as a very temporary spokesperson for Astronomer. 'Astronomer has gotten a lot of questions over the last few days and they wanted me to answer the most common ones,' Paltrow said, smiling and deftly avoiding mention of the KissCam fuss. 'We've been thrilled that so many people have a newfound interest in data workflow automation,' she said. 'We will now be returning to what we do best – delivering game-changing results for our customers.' When footage from the KissCam first spread online, it wasn't immediately clear who the couple were. Soon after, the company identified the pair and Byron resigned, followed by Cabot. The video clip resulted in a steady stream of memes, parody videos, and screenshots of the pair's shocked faces filling social media feeds. Online streams of Coldplay's songs jumped 20 percent in the days after the video went viral, according to Luminate, an industry data and analytics company.

China's Premier Li Proposes Global AI Cooperation Organization
China's Premier Li Proposes Global AI Cooperation Organization

Asharq Al-Awsat

time2 days ago

  • Asharq Al-Awsat

China's Premier Li Proposes Global AI Cooperation Organization

Chinese Premier Li Qiang on Saturday proposed establishing an organization to foster global cooperation on artificial intelligence, calling on countries to coordinate on the development and security of the fast-evolving technology. Speaking at the opening of the annual World Artificial Intelligence Conference in Shanghai, Li called AI a new engine for growth but said governance is fragmented and emphasizing the need for more coordination between countries to form a globally recognized framework for AI. The three-day event brings together industry leaders and policymakers at a time of escalating technological competition between China and the United States - the world's two largest economies - with AI emerging as a key battleground. "Overall global AI governance is still fragmented. Countries have great differences particularly in terms of areas such as regulatory concepts, institutional rules," Li said. "We should strengthen coordination to form a global AI governance framework that has broad consensus as soon as possible." Washington has imposed export restrictions on advanced technology to China, including the most high-end AI chips made by companies such as Nvidia and chipmaking equipment, citing concerns that the technology could enhance China's military capabilities. Despite these restrictions, China has continued making AI breakthroughs that have drawn close scrutiny from US officials. Li did not name the United States in his speech but he warned that AI could become an "exclusive game" for a few countries and companies, adding that challenges included an insufficient supply of AI chips and restrictions on talent exchange. GOVERNANCE PLAN China wants to share its development experience and products with other countries, especially those in the Global South, Li said. Also on Saturday, China released an action plan for global AI governance, in which it invited governments, international organizations, enterprises and research institutions to work together and promote international exchanges including through a cross-border open-source community. The plan proposes accelerating digital infrastructure such as clean power, new-generation networks and data centers, according to a statement from China's foreign ministry. The AI conference is an annual government-sponsored event in Shanghai that typically attracts major industry players, government officials, researchers and investors. Saturday's speakers included Anne Bouverot, the French president's special envoy for AI, computer scientist Geoffrey Hinton, known as "the Godfather of AI", and former Google CEO Eric Schmidt. Tesla CEO Elon Musk, who has in past years regularly appeared at the opening ceremony in person or by video, did not speak this year. Besides forums, the conference features exhibitions where companies demonstrate their latest innovations. This year, more than 800 companies are participating, showcasing more than 3,000 high-tech products, 40 large language models, 50 AI-powered devices and 60 intelligent robots, according to organizers. The exhibition features predominantly Chinese companies, including tech giants Huawei and Alibaba and startups such as humanoid robot maker Unitree. Western participants include Tesla, Alphabet and Amazon.

DOWNLOAD THE APP

Get Started Now: Download the App

Ready to dive into a world of global content with local flavor? Download Daily8 app today from your preferred app store and start exploring.
app-storeplay-store