Chinese Hackers Exploit Vulnerabilities in Microsoft SharePoint Servers
Microsoft has reported that hackers linked to China, including state-sponsored groups, have taken advantage of security flaws in its SharePoint document-sharing software to target data belonging to businesses that use it.
The company identified three groups—Linen Typhoon and Violet Typhoon, which have ties to the Chinese government, and Storm-2603, believed to operate from China—using recently uncovered vulnerabilities to attack internet-connected servers running the platform.
This disclosure follows reports of Amazon closing its artificial intelligence lab in Shanghai, while consultancy McKinsey has halted AI-related work in China as tensions between Washington and Beijing intensify.
Microsoft and IBM have also reduced research and development projects in China, coinciding with heightened U.S. scrutiny of American firms involved in AI development there.
According to Microsoft, the vulnerabilities affect on-premises SharePoint servers used by many companies but do not impact its cloud-based service. SharePoint is widely used by large organizations for document storage and collaboration, often integrated with other Microsoft products such as Office and Outlook.
The attacks reportedly began on 7 July, with hackers attempting to breach systems through these weaknesses to gain initial access to targeted organizations. The flaws allow attackers to bypass authentication and remotely execute malicious code. In some cases, hackers sent requests to SharePoint servers to steal critical security keys.
Microsoft has since released security patches and urged all on-premises SharePoint users to install them. It warned with "high confidence" that the hacking groups would continue targeting systems that remain unpatched.
Linen Typhoon, active since 2012, has primarily focused on stealing intellectual property from government, defense, strategic planning, and human rights organizations. Violet Typhoon, operational since 2015, has engaged in espionage, targeting former government and military personnel, NGOs, think tanks, universities, media, and financial and health sectors in the U.S., Europe, and East Asia.
Microsoft stated with "medium confidence" that Storm-2603 is based in China but found no direct links to other Chinese hacking groups. It also cautioned that additional attackers may exploit similar vulnerabilities if security updates are not applied.
Read next
"AirPods Pro 3 reviewed: Upgraded battery, superior noise cancellation, top-tier performance"
Apple’s widely used AirPods Pro wireless earbuds have returned for their third iteration, offering improvements in comfort, battery performance, integrated heart rate tracking, and enhanced noise cancellation. The new model appears poised to be as prevalent as earlier versions.
Three years have passed since the previous release, yet the
"Peter Thiel's secret talks on antichrist shed more light on him than doomsday"
Peter Thiel’s Unusual Academic Pursuits
Peter Thiel is known for his skepticism toward academia. Yet, in four recent private lectures in San Francisco discussing the antichrist, the billionaire investor has made an unexpected case for intellectual credentials.
During these wide-ranging talks, Thiel appeared to channel the eclectic thinking he
"X resolves $128M severance dispute with former Twitter executives"
# Elon Musk and X Reach Settlement with Former Twitter Executives Over Severance Dispute
Elon Musk and X have resolved a legal dispute with four former high-ranking executives of Twitter, including the company’s ex-CEO, who alleged that the billionaire withheld $128 million in severance payments after acquiring the social media