A cyber espionage operation has targeted Microsoft server software, compromising around 100 organisations, primarily in the U.S. and Germany, including government entities. The attack specifically affected self-hosted SharePoint servers, while Microsoft server-based instances remain secure. The zero-day hack takes advantage of an undisclosed digital vulnerability, enabling spies to infiltrate servers and install backdoors for ongoing access. Researchers from Eye Security and the Shadowserver Foundation estimated the initial number of victims before the exploit's details became widely known. Microsoft has issued security updates and advised customers to strengthen their defenses against potential threats.
A sweeping cyber espionage operation targeting Microsoft server software has compromised about 100 different organisations over the weekend, particularly affecting self-hosted SharePoint servers.
Dubbed a zero-day, these hacks leverage a previously undisclosed digital weakness, allowing spies to penetrate vulnerable servers and drop backdoors for continuous access.
Vaisha Bernard of Eye Security noted almost 100 victims were uncovered before the technique behind the hack was widely known, highlighting potential for exploitation by adversaries.
The Shadowserver Foundation confirmed that most of the affected organisations were in the United States and Germany, with some including government organisations.
Collection
[
|
...
]