{"id":5171,"date":"2025-07-21T07:27:03","date_gmt":"2025-07-21T07:27:03","guid":{"rendered":"https:\/\/prepsaret.com\/news\/?p=5171"},"modified":"2025-07-21T07:27:03","modified_gmt":"2025-07-21T07:27:03","slug":"microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates","status":"publish","type":"post","link":"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/","title":{"rendered":"Microsoft Warns of Active Cyberattacks on SharePoint Servers, Urges Immediate Security Updates"},"content":{"rendered":"<p><b>Summary:<\/b><\/p>\n<ul>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Hackers are exploiting a previously unknown vulnerability in Microsoft SharePoint servers used by businesses and government agencies.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">The FBI and Microsoft are collaborating with cybersecurity agencies to address the \u201czero-day\u201d threat.<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">Microsoft urges organizations to apply security updates immediately or disconnect vulnerable servers from the internet.<\/span><\/li>\n<\/ul>\n<h3><b>Zero-Day Flaw Exposes Tens of Thousands of Servers<\/b><\/h3>\n<p><span style=\"font-weight: 400;\"><a href=\"https:\/\/prepsaret.com\/comptia\/comptia-network-vs-microsoft-networking-fundamentals\" target=\"_blank\" rel=\"noopener\">Microsoft<\/a> has issued an urgent alert warning of \u201cactive attacks\u201d targeting its SharePoint server software used by businesses and government agencies for internal document sharing, prompting immediate defensive measures across sectors.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The attacks exploit a \u201czero-day\u201d vulnerability\u2014meaning a flaw unknown to the software maker before exploitation\u2014placing tens of thousands of on-premises SharePoint servers at risk globally.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">While Microsoft\u2019s cloud-based SharePoint Online service in Microsoft 365 is unaffected, the threat extends to government agencies, <a href=\"https:\/\/prepsaret.com\/ged\/colleges-that-accept-the-ged-credential\" target=\"_blank\" rel=\"noopener\">universities<\/a>, healthcare systems, and corporations relying on local servers for collaboration.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">In its alert, Microsoft stated the flaw allows \u201can authorized attacker to perform spoofing over a network,\u201d enabling hackers to disguise themselves as trusted users or systems to gain deeper network access. Once inside, attackers can exfiltrate sensitive data, deploy persistent backdoors, and steal cryptographic keys, according to <a href=\"https:\/\/prepsaret.com\/comptia\/cybersecurity-jobs\" target=\"_blank\" rel=\"noopener\">cybersecurity experts<\/a>.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Michael Sikorski, CTO and Head of Threat Intelligence at Palo Alto Networks, emphasized the seriousness of the breach, noting attackers are bypassing identity protections such as multi-factor authentication and single sign-on to gain privileged access. \u201cA compromise doesn\u2019t stay contained\u2014it opens the door to the entire network,\u201d Sikorski warned.<\/span><\/p>\n<h3><b>Immediate Action Urged as FBI Joins Response<\/b><\/h3>\n<p><span style=\"font-weight: 400;\">The FBI confirmed it is aware of the attacks and is working closely with federal and private-sector partners to address the threat, though it provided no additional details. The US Cybersecurity and Infrastructure Security Agency also acknowledged the vulnerability, warning it allows hackers to access file systems, internal configurations, and execute code remotely.<\/span><\/p>\n<p><span style=\"font-weight: 400;\"><a href=\"https:\/\/prepsaret.com\/comptia\/cybersecurity-analyst\" target=\"_blank\" rel=\"noopener\">Cybersecurity analysts<\/a> cautioned that attackers could use the flaw to infiltrate a wide range of organizations, with Silas Cutler of Censys describing the vulnerability as \u201ca dream for ransomware operators.\u201d\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Cutler noted that more than 10,000 companies globally, including many in the US, UK, Netherlands, and Canada, could be affected. In response, Microsoft has released a critical security patch for affected SharePoint servers and advised customers to apply it immediately.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">If organizations are unable to deploy recommended protections, Microsoft advises disconnecting vulnerable servers from the internet until patches can be applied to prevent exploitation.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The Washington Post, which first reported the attacks, indicated that US federal and state agencies, energy companies, universities, and at least one Asian telecommunications firm have been targeted in recent days.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">This incident follows a series of <a href=\"https:\/\/prepsaret.com\/comptia\/cybersecurity-certification-for-ethical-hacking\" target=\"_blank\" rel=\"noopener\">high-profile cybersecurity challenges<\/a> for Microsoft. In March, the company reported Chinese hackers were targeting cloud applications and remote management tools for espionage. Last year, the White House\u2019s Cyber Safety Review Board criticized Microsoft\u2019s security practices as \u201cinadequate\u201d after a breach compromised the email accounts of government officials.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">As the investigation unfolds, Microsoft\u2019s latest breach underscores the persistent vulnerabilities in critical infrastructure and highlights the importance of proactive <a href=\"https:\/\/prepsaret.com\/comptia\/cybersecurity-services\" target=\"_blank\" rel=\"noopener\">cybersecurity measures<\/a>. Organizations using on-premises SharePoint servers are urged to prioritize immediate updates to protect against potential data breaches and operational disruptions amid rising global cyber threats.<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Summary: Hackers are exploiting a previously unknown vulnerability in Microsoft SharePoint servers used by businesses and government agencies. The FBI and Microsoft are collaborating with cybersecurity agencies to address the \u201czero-day\u201d threat. Microsoft urges organizations to apply security updates immediately or disconnect vulnerable servers from the internet. Zero-Day Flaw Exposes Tens of Thousands of Servers [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":5173,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"categories":[330],"tags":[],"class_list":["post-5171","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.4 (Yoast SEO v25.3) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Microsoft Warns of Active Cyberattacks on SharePoint Servers, Urges Immediate Security Updates<\/title>\n<meta name=\"description\" content=\"Hackers are exploiting a previously unknown vulnerability in Microsoft SharePoint servers used by businesses and government agencies.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Microsoft Warns of Active Cyberattacks on SharePoint Servers, Urges Immediate Security Updates\" \/>\n<meta property=\"og:description\" content=\"Hackers are exploiting a previously unknown vulnerability in Microsoft SharePoint servers used by businesses and government agencies.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/\" \/>\n<meta property=\"og:site_name\" content=\"prepsaret.com\" \/>\n<meta property=\"article:published_time\" content=\"2025-07-21T07:27:03+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/prepsaret.com\/news\/wp-content\/uploads\/2025\/07\/Microsoft-Warns-of-Active-Cyberattacks-on-SharePoint-Servers-1.png\" \/>\n\t<meta property=\"og:image:width\" content=\"900\" \/>\n\t<meta property=\"og:image:height\" content=\"500\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Kip Kip\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Kip Kip\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/\",\"url\":\"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/\",\"name\":\"Microsoft Warns of Active Cyberattacks on SharePoint Servers, Urges Immediate Security Updates\",\"isPartOf\":{\"@id\":\"https:\/\/prepsaret.com\/news\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/prepsaret.com\/news\/wp-content\/uploads\/2025\/07\/Microsoft-Warns-of-Active-Cyberattacks-on-SharePoint-Servers-1.png\",\"datePublished\":\"2025-07-21T07:27:03+00:00\",\"author\":{\"@id\":\"https:\/\/prepsaret.com\/news\/#\/schema\/person\/f04db4c8da64ac2e4cb301370d8c4717\"},\"description\":\"Hackers are exploiting a previously unknown vulnerability in Microsoft SharePoint servers used by businesses and government agencies.\",\"breadcrumb\":{\"@id\":\"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/#primaryimage\",\"url\":\"https:\/\/prepsaret.com\/news\/wp-content\/uploads\/2025\/07\/Microsoft-Warns-of-Active-Cyberattacks-on-SharePoint-Servers-1.png\",\"contentUrl\":\"https:\/\/prepsaret.com\/news\/wp-content\/uploads\/2025\/07\/Microsoft-Warns-of-Active-Cyberattacks-on-SharePoint-Servers-1.png\",\"width\":900,\"height\":500,\"caption\":\"Microsoft Warns of Active Cyberattacks on SharePoint Servers\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/prepsaret.com\/news\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Microsoft Warns of Active Cyberattacks on SharePoint Servers, Urges Immediate Security Updates\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/prepsaret.com\/news\/#website\",\"url\":\"https:\/\/prepsaret.com\/news\/\",\"name\":\"prepsaret.com\",\"description\":\"One Time Pass Guaranteed on your news Test\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/prepsaret.com\/news\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/prepsaret.com\/news\/#\/schema\/person\/f04db4c8da64ac2e4cb301370d8c4717\",\"name\":\"Kip Kip\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/prepsaret.com\/news\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/af817a714d2216b7db46bfc320173120ab5edecec1379d9d071d0ea16aee60d1?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/af817a714d2216b7db46bfc320173120ab5edecec1379d9d071d0ea16aee60d1?s=96&d=mm&r=g\",\"caption\":\"Kip Kip\"}}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Microsoft Warns of Active Cyberattacks on SharePoint Servers, Urges Immediate Security Updates","description":"Hackers are exploiting a previously unknown vulnerability in Microsoft SharePoint servers used by businesses and government agencies.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/","og_locale":"en_US","og_type":"article","og_title":"Microsoft Warns of Active Cyberattacks on SharePoint Servers, Urges Immediate Security Updates","og_description":"Hackers are exploiting a previously unknown vulnerability in Microsoft SharePoint servers used by businesses and government agencies.","og_url":"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/","og_site_name":"prepsaret.com","article_published_time":"2025-07-21T07:27:03+00:00","og_image":[{"width":900,"height":500,"url":"https:\/\/prepsaret.com\/news\/wp-content\/uploads\/2025\/07\/Microsoft-Warns-of-Active-Cyberattacks-on-SharePoint-Servers-1.png","type":"image\/png"}],"author":"Kip Kip","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Kip Kip","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/","url":"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/","name":"Microsoft Warns of Active Cyberattacks on SharePoint Servers, Urges Immediate Security Updates","isPartOf":{"@id":"https:\/\/prepsaret.com\/news\/#website"},"primaryImageOfPage":{"@id":"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/#primaryimage"},"image":{"@id":"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/#primaryimage"},"thumbnailUrl":"https:\/\/prepsaret.com\/news\/wp-content\/uploads\/2025\/07\/Microsoft-Warns-of-Active-Cyberattacks-on-SharePoint-Servers-1.png","datePublished":"2025-07-21T07:27:03+00:00","author":{"@id":"https:\/\/prepsaret.com\/news\/#\/schema\/person\/f04db4c8da64ac2e4cb301370d8c4717"},"description":"Hackers are exploiting a previously unknown vulnerability in Microsoft SharePoint servers used by businesses and government agencies.","breadcrumb":{"@id":"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/#primaryimage","url":"https:\/\/prepsaret.com\/news\/wp-content\/uploads\/2025\/07\/Microsoft-Warns-of-Active-Cyberattacks-on-SharePoint-Servers-1.png","contentUrl":"https:\/\/prepsaret.com\/news\/wp-content\/uploads\/2025\/07\/Microsoft-Warns-of-Active-Cyberattacks-on-SharePoint-Servers-1.png","width":900,"height":500,"caption":"Microsoft Warns of Active Cyberattacks on SharePoint Servers"},{"@type":"BreadcrumbList","@id":"https:\/\/prepsaret.com\/news\/microsoft-warns-of-active-cyberattacks-on-sharepoint-servers-urges-immediate-security-updates\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/prepsaret.com\/news\/"},{"@type":"ListItem","position":2,"name":"Microsoft Warns of Active Cyberattacks on SharePoint Servers, Urges Immediate Security Updates"}]},{"@type":"WebSite","@id":"https:\/\/prepsaret.com\/news\/#website","url":"https:\/\/prepsaret.com\/news\/","name":"prepsaret.com","description":"One Time Pass Guaranteed on your news Test","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/prepsaret.com\/news\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/prepsaret.com\/news\/#\/schema\/person\/f04db4c8da64ac2e4cb301370d8c4717","name":"Kip Kip","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/prepsaret.com\/news\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/af817a714d2216b7db46bfc320173120ab5edecec1379d9d071d0ea16aee60d1?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/af817a714d2216b7db46bfc320173120ab5edecec1379d9d071d0ea16aee60d1?s=96&d=mm&r=g","caption":"Kip Kip"}}]}},"_links":{"self":[{"href":"https:\/\/prepsaret.com\/news\/wp-json\/wp\/v2\/posts\/5171","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/prepsaret.com\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/prepsaret.com\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/prepsaret.com\/news\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/prepsaret.com\/news\/wp-json\/wp\/v2\/comments?post=5171"}],"version-history":[{"count":1,"href":"https:\/\/prepsaret.com\/news\/wp-json\/wp\/v2\/posts\/5171\/revisions"}],"predecessor-version":[{"id":5174,"href":"https:\/\/prepsaret.com\/news\/wp-json\/wp\/v2\/posts\/5171\/revisions\/5174"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/prepsaret.com\/news\/wp-json\/wp\/v2\/media\/5173"}],"wp:attachment":[{"href":"https:\/\/prepsaret.com\/news\/wp-json\/wp\/v2\/media?parent=5171"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/prepsaret.com\/news\/wp-json\/wp\/v2\/categories?post=5171"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/prepsaret.com\/news\/wp-json\/wp\/v2\/tags?post=5171"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}