US Edition
Hackers Attack Microsoft SharePoint, Targeting Organizations Like U.S Nuclear Security
UNITED STATES, JUL 25 – Chinese state-aligned groups exploited an unpatched zero-day flaw in SharePoint servers to breach over 400 organizations, including critical U.S. agencies, Microsoft said.
- On July 7, 2025, Microsoft said Chinese hackers exploited a critical zero-day flaw in on-premises SharePoint servers, breaching over 400 organizations including the U.S. National Nuclear Security Administration.
- Because a security patch released this month failed to fully fix a critical flaw, Microsoft is probing if a leak from its Active Protections Program led to the widespread exploitation.
- Linen Typhoon and Violet Typhoon exploited the flaw to steal data and deploy ransomware, Microsoft said, impacting institutions such as the U.S. National Institutes of Health, energy companies, universities and government agencies.
- The Cybersecurity and Infrastructure Security Agency has notified up to a dozen federal entities of possible compromise, the Department of Defense said it was not affected, and Microsoft urged all customers to install urgent security updates immediately.
- With rapid adoption of these exploits, Microsoft assesses threat actors will keep targeting unpatched on-premises SharePoint systems, and Michael Sikorski advised organizations to assume they’ve been compromised.
15 Articles
15 Articles
Pentagon unaffected by latest Microsoft hack, tech chief says
The Department of Defense has not been ensnared by a broad intrusion into on-premises versions of Microsoft Sharepoint, its chief information officer said Thursday. “As of right now, no, not that I’m aware of,” Katie Arrington said at the ATO and Cloud Security Summit Thursday in a stage interview. Arrington said she’s been doing daily calls with Microsoft while the department has been conducting forensics investigations since the “zero-day” vul…
Hackers attack Microsoft SharePoint, targeting organizations like U.S nuclear security
Microsoft blamed two Chinese nation-state actors for exploiting recently discovered security flaws in SharePoint to infiltrate vulnerable organizations, like schools, state governments, and the U.S. government’s top nuclear security agency.
Microsoft probing if Chinese hackers learned SharePoint flaws through alert: Report
Microsoft is investigating whether a leak from its early alert system for cybersecurity companies allowed Chinese hackers to exploit flaws in its SharePoint service before they were patched, Bloomberg News reported on Friday (Jul 25). A security patch Microsoft released this month failed to fully fix a cri
Microsoft Probing If Chinese Hackers Learned SharePoint Flaws Through Alert
Microsoft Corp. is investigating whether a leak from its early alert system for cybersecurity companies allowed Chinese hackers to exploit flaws in its SharePoint service before they were patched, according to people familiar with the matter.
China Exploits Microsoft Flaw to Hack US Nuclear Agency.
PULSE POINTSWHAT HAPPENED: Chinese hackers affiliated with the government exploited vulnerabilities in Microsoft SharePoint software, breaching multiple U.S. agencies, including the National Nuclear Security Administration (NNSA).WHO WAS INVOLVED: Hackers linked to Chinese groups Linen Typhoon, Violet Typhoon, and Storm-2603; U.S. agencies, including the Department of Energy and others.WHEN & WHERE: The breach began on July 18, 2025, impacting a…
On July 22, Microsoft made a rare public accusation that a Chinese Communist Party-backed hacker group used a vulnerability in its SharePoint file management software to launch a large-scale cyberattack on government agencies and companies around the world, triggering an emergency response from the FBI and cybersecurity departments in the United States. Experts warn that the Chinese Communist Party's cyberattacks are becoming increasingly "weapo…
Coverage Details
Bias Distribution
- 40% of the sources are Center, 40% of the sources lean Right
Factuality
To view factuality data please Upgrade to Premium
