Microsoft Issues Alert After Critical SharePoint Server Attacks
Newsweek AI is in beta. Translations may contain inaccuracies—please refer to the original content.
Microsoft has issued an urgent security alert warning of "active attacks" targeting SharePoint servers used by government agencies and businesses worldwide.
The attacks, discovered over the weekend, exploit a previously unknown vulnerability in the document-sharing software, prompting immediate action from both Microsoft and federal investigators.
The Federal Bureau of Investigations (FBI) told Newsweek on Sunday that it is aware of the incidents and working with federal and private-sector partners to address the threat. The Washington Post first reported the hacks, citing unidentified actors who exploited the flaw to target U.S. and international agencies and businesses over the past few days.
Newsweek reached out to Microsoft and the Cybersecurity and Infrastructure Security Agency (CISA) on Sunday via email for comment.
Why It Matters
This zero-day attack represents a significant cybersecurity threat to organizations relying on SharePoint for internal document management and collaboration.
The vulnerability affects government agencies, schools, healthcare systems including hospitals, and large enterprise companies, with attackers bypassing multi-factor authentication and single sign-on protections to gain privileged access.
What To Know
The vulnerability affects only on-premises SharePoint servers used within organizations, not Microsoft's cloud-based SharePoint Online service.
Michael Sikorski, CTO and Head of Threat Intelligence for Unit 42 at Palo Alto Networks, told Newsweek in an email statement that "attackers are bypassing identity controls, including MFA and SSO, to gain privileged access. Once inside, they're exfiltrating sensitive data, deploying persistent backdoors, and stealing cryptographic keys."
According to Sikorski, the attackers have already established footholds in compromised systems, making patching alone insufficient to fully remove the threat. The compromise extends beyond SharePoint due to its deep integration with Microsoft's platform, including Office, Teams, OneDrive and Outlook. "What makes this especially concerning is SharePoint's deep integration with Microsoft's platform," Sikorski said. "A compromise doesn't stay contained—it opens the door to the entire network."
Microsoft has released a security update for SharePoint Subscription Edition and is developing patches for 2016 and 2019 versions. The company recommends organizations that cannot immediately apply protective measures should disconnect their servers from the internet until updates become available.
FILE - A Microsoft sign and logo are pictured at the company's headquarters, Friday, April 4, 2025, in Redmond, Wash.
FILE - A Microsoft sign and logo are pictured at the company's headquarters, Friday, April 4, 2025, in Redmond, Wash.
(AP Photo/Jason Redmond, File
What People Are Saying
Microsoft Security Team in a statement: "We recommend security updates that customers should apply immediately."
Michael Sikorski, CTO and Head of Threat Intelligence for Unit 42 at Palo Alto Networks, told Newsweek: "If you have SharePoint on-prem exposed to the internet, you should assume that you have been compromised at this point. This is a high-severity, high-urgency threat. We are urging organizations who are running on-prem SharePoint to take action immediately and apply all relevant patches now and as they become available, rotate all cryptographic material, and engage professional incident response."
The Cybersecurity and Infrastructure Security Agency said on Sunday: "CISA is aware of active exploitation of a new remote code execution (RCE) vulnerability enabling unauthorized access to on-premise SharePoint servers. While the scope and impact continue to be assessed, the new Common Vulnerabilities and Exposures (CVE), CVE-2025-53770, is a variant of the existing vulnerability CVE-2025-49706 and poses a risk to organizations. This exploitation activity, publicly reported as "ToolShell," provides unauthenticated access to systems and enables malicious actors to fully access SharePoint content, including file systems and internal configurations, and execute code over the network."
The FBI told Newsweek in an email response that they are: "Aware of the attacks and working closely with federal and private-sector partners," though they declined to provide additional operational details.
What Happens Next
Organizations using affected SharePoint versions face immediate decisions about disconnecting servers from the internet until patches become available.
Palo Alto Networks is actively notifying affected customers and working closely with Microsoft's Security Response Center to provide updated threat intelligence. Microsoft continues developing patches for older SharePoint versions, with timeline details yet to be announced.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
2 hours ago
- Yahoo
Wedbush Calls AI Microsoft's Shining Moment
Microsoft (NASDAQ:MSFT) executive aren't losing any sleep over Q4, with Wedbush just stuck with its Outperform call and $600 target ahead of the July 30 report. Warning! GuruFocus has detected 7 Warning Sign with MSFT. Daniel Ives and the team reckon the AI revolution is in full swing, with enterprise deals accelerating across finance, government and retail. They see Azure and Office AI features driving Microsoft toward a $4 trillion market capand even $5 trillion in the next 18 months. Over the next three years, more than 70% of its installed base should be running AI tools, and early Copilot rollouts could tack on about $25 billion by FY 26. Wedbush calls this Redmond's shining moment, pointing out stronger cloud wins against Amazon (AMZN) and Google (NASDAQ:GOOG) and smoother supply chains compared to 90 days ago. They're clear that while FY 25 looks solid, FY 26 is when AI really kicks inand they don't think the Street has fully caught on yet. Investors will be watching the July 30 print for proof. This article first appeared on GuruFocus.
Yahoo
2 hours ago
- Yahoo
Microsoft Patent Automates Cloud Error Fixes
Microsoft wants to keep things running smoothly in the cloud. The company is seeking to patent a system for 'automated incident triage' in cloud computing environments using generative AI to automatically track, route and handle any errors. READ ALSO: What Businesses Should Consider Before Using Off-the-Shelf AI and How to Avoid Hiring a North Korean Spy as a 'Remote Employee' 'Conventional approaches leverage general machine learning models to aid in triage and diagnosis,' the patent notes. 'However, the performance of these approaches is limited due to a lack of domain knowledge in general machine learning models from various triage teams.' Cloud 'incidents' come in many forms that can undermine the health, performance and security of a cloud system, including bugs, outages, service errors and vulnerabilities. When an incident is detected, a triage engine will sort it into the right category to troubleshoot it properly. Each potential category has its own dedicated generative AI model trained on past data to properly handle such incidents. The models digest information related to the incident and make recommendations on which team should tackle it. Cybersecurity has long been Microsoft's bread and butter. The company's patent history includes tech to weed out anomalies in cloud environments, prevent AI 'jailbreaks' and evaluate data health. It's only natural that security extends to Azure, which has become one of the company's biggest moneymakers as AI drives up demand. In the most recent quarter, the company's cloud unit made $42.4 billion, up 20% from the previous year's quarter. Azure holds 22% of global cloud market share, according to CRN, second only to Amazon Web Services. But its security oversight extends only so far: Earlier this month, hackers exploited a vulnerability in Microsoft's SharePoint document management software, creating a breach impacting organizations worldwide. Microsoft said that hackers are targeting clients running SharePoint services from on-premise networks rather than services hosted by the company itself. That underscores the stakes for enterprises weighing whether to repatriate their data and systems to on-premise servers, rather than storing them with cloud hyperscalers: The relative security capabilities of each option should be evaluated carefully. This post first appeared on The Daily Upside. To receive cutting-edge insights into technology trends impacting CIOs and IT leaders, subscribe to our free CIO Upside newsletter.
Yahoo
2 hours ago
- Yahoo
Should Investors Buy Microsoft Stock Ahead of Q4 Earnings Release?
Microsoft MSFT is slated to report fourth-quarter fiscal 2025 results on July Zacks Consensus Estimate for revenues is pegged at $73.71 billion, indicating growth of 13.88% from the figure reported in the year-ago consensus mark for earnings has remained steady at $3.35 per share over the past 30 days, suggesting 13.56% year-over-year growth. Image Source: Zacks Investment Research MSFT Earnings Surprise History In the last reported quarter, the company delivered an earnings surprise of 8.13%. The company's earnings beat the Zacks Consensus Estimate in each of the trailing four quarters, the average surprise being 5.21%. Microsoft Corporation Price and EPS Surprise Microsoft Corporation price-eps-surprise | Microsoft Corporation Quote Earnings Whispers for MSFT Our proven model does not conclusively predict an earnings beat for Microsoft this time around. The combination of a positive Earnings ESP and a Zacks Rank #1 (Strong Buy), 2 (Buy) or 3 (Hold) increases the odds of an earnings beat. This is not the case here. You can uncover the best stocks to buy or sell before they are reported with our Earnings ESP has an Earnings ESP of -0.64% and a Zacks Rank #2 at present. You can see the complete list of today's Zacks #1 Rank stocks here. Factors Shaping MSFT's Upcoming Results Microsoft's upcoming fourth-quarter fiscal 2025 results are expected to demonstrate strong momentum across its core business segments, driven by continued AI infrastructure investments and robust cloud adoption. The company positioned itself well for solid quarterly performance through strategic platform expansions and key product launches during the period, thus making it an appealing pick for investors ahead of the upcoming Productivity and Business Processes, Microsoft projects revenues between $32.05 billion and $32.35 billion, with model estimates indicating 12.2% year-over-year growth to $32.1 is expected to have benefited from sustained Microsoft 365 Commercial cloud growth, with management guiding approximately 14% constant currency (cc) expansion. The segment capitalized on continued ARPU growth through E5 and Microsoft 365 Copilot adoption, while LinkedIn maintained steady performance despite hiring market headwinds. For LinkedIn, the company expects revenue growth in high single enhanced its competitive position through major Build 2025 conference announcements, including new agent capabilities and enterprise-grade AI tuning features rolled out during the Intelligent Cloud segment continues to remain the primary growth engine, with revenue projections between $28.75 billion and $29.05 billion. Our model estimate for this segment is pegged at $28.89 billion, indicating growth of 21.5% from the figure reported in the year-ago quarter. Azure remains the standout performer, with revenue growth projected between 34% and 35% in cc. Microsoft added more AI computing power ahead of schedule in the previous quarter, helping the company meet rising customer demand even with some supply limits continuing past June. The company's $80 billion spending plan for fiscal 2025 helped build more data centers worldwide, with most of the investment happening in the United Build 2025 developer conference showcased the company's comprehensive AI platform strategy, introducing multi-agent orchestration capabilities, enterprise-grade security features and expanded model partnerships. These initiatives reinforced Microsoft's leadership position in enterprise AI adoption and positioned the company well for sustained growth momentum into fiscal Enterprise Services, revenues are expected to grow in mid-to-high single digits. The company expects Server product revenues to decline in mid-single More Personal Computing, the company projects revenues between $12.35 billion and $12.85 billion. Our model estimate for this segment is pegged at $12.43 billion, indicating growth of 1% from the figure reported in the year-ago Personal Computing is expected to have shown resilience through successful product rollouts, including the deployment of Recall, Click to Do, and enhanced Windows Search features to all Copilot+ PCs during the to-be-reported quarter. The segment received a significant boost from the phenomenal success of A Minecraft Movie, which achieved record-breaking box office performance, exceeding $900 million globally and drove increased weekly active users for the gaming franchise by over 75% year over revenue performance appears contingent on improving PC demand trends. According to the preliminary results from the International Data Corporation Worldwide Quarterly Personal Computing Device Tracker, second-quarter 2025 worldwide PC shipments reached 68.4 million units, growing 6.5% year over year, though Microsoft expects Windows OEM revenues to decline in mid-to-high single digits. The competitive landscape shows mixed results, with Lenovo LNVGY and Hewlett Packard HPE achieving 15.2% and 3.2% shipment growth, respectively, while Dell Technologies DELL experienced a 3% Gaming, the company expects revenues to grow in mid-single digits. Microsoft expects Xbox content and services revenues to grow in high single digits. This moderate performance in consumer-facing segments contrasts with the stronger enterprise and cloud divisions. MSFT Price Performance & Stock Valuation Shares of MSFT have gained 21.2% in the year-to-date period compared with the broader Zacks Computer & Technology sector's increase of 10.8%. Shares of LNVGY and DELL have gained 2.3% and 11.4%, respectively while HPE has lost 3.9% in the same period. Year-to-date Performance Image Source: Zacks Investment Research Now, let's look at the value Microsoft offers investors at current levels. MSFT is trading at a premium with a forward 12-month P/S of 11.99X compared with the Zacks Computer - Software industry's 8.93X, reflecting a stretched valuation. MSFT's P/S F12M Ratio Depicts Stretched Valuation Image Source: Zacks Investment Research Investment Thesis Microsoft presents a compelling investment opportunity ahead of fourth-quarter fiscal 2025 earnings, with an estimated 13.88% revenue growth to $73.71 billion driven by robust AI infrastructure investments and cloud adoption. The company's strategic positioning in enterprise AI through comprehensive platform expansions and Azure's impressive 34-35% cc growth trajectory demonstrate sustainable competitive advantages. Despite premium valuation and intensifying competition, Microsoft's $80 billion investment in global data centers, successful AI integration across productivity suites and strong momentum in the Intelligent Cloud segment position the company for continued market leadership and long-term value creation for shareholders. Final Thoughts Microsoft's strong fundamentals, driven by AI leadership and cloud dominance, make it an attractive investment despite a premium valuation. With projected double-digit revenue growth, robust Azure expansion and strategic AI investments positioning the company for sustained market leadership, investors should consider buying the stock ahead of fiscal fourth-quarter earnings. The company's comprehensive AI platform strategy ensures long-term competitive advantages and value creation. Want the latest recommendations from Zacks Investment Research? Today, you can download 7 Best Stocks for the Next 30 Days. Click to get this free report Microsoft Corporation (MSFT) : Free Stock Analysis Report Dell Technologies Inc. (DELL) : Free Stock Analysis Report Lenovo Group Ltd. (LNVGY) : Free Stock Analysis Report Hewlett Packard Enterprise Company (HPE) : Free Stock Analysis Report This article originally published on Zacks Investment Research ( Zacks Investment Research Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
