Microsoft server hack likely single actor, thousands of firms now vulnerable, researchers say
Thousands of entities potentially now vulnerable to attack
Hack likely work of one threat actor or group, researcher says
Unclear who is behind attacks
LONDON, July 21 (Reuters) - A global attack on Microsoft server software used by thousands of government agencies and businesses to share documents within organisations is likely the work of a single actor, a cybersecurity researcher said on Monday. Microsoft on Saturday issued an alert about "active attacks" on SharePoint servers used within organisations. It said that SharePoint Online in Microsoft 365, which is in the cloud, was not hit by the exploit, also known as a "zero day" because it was previously unknown to cybersecurity researchers.
"Based on the consistency of the tradecraft seen across observed attacks, the campaign launched on Friday appears to be a single actor. However, it's possible that this will quickly change," Rafe Pilling, Director of Threat Intelligence at Sophos, a British cybersecurity firm.
That tradecraft included the sending of the same digital payload to multiple targets, Pilling added.
Microsoft said it had "provided security updates and encourages customers to install them," a company spokesperson said in an emailed statement.
It was not clear who was behind the ongoing hack. The FBI said on Sunday it was aware of the attacks and was working closely with its federal and private-sector partners, but offered no other details. Britain's National Cyber Security Centre did not immediately respond to a request for comment.
The Washington Post said unidentified actors in the past few days had exploited a flaw to launch an attack that targeted U.S. and international agencies and businesses.
According to data from Shodan, a search engine that helps to identify internet-linked equipment, over 8,000 servers online could theoretically have already been compromised by hackers.
Those servers include major industrial firms, banks, auditors, healthcare companies, and several U.S. state-level and international government entities.
"The SharePoint incident appears to have created a broad level of compromise across a range of servers globally," said Daniel Card of British cybersecurity consultancy, PwnDefend.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Hindustan Times
an hour ago
- Hindustan Times
Plan to develop Lucknow as India's 1st AI City gets ₹10,732-crore push
The state capital has received a corpus of ₹10,732 crore for developing the AI ecosystem under the IndiaAI Mission approved in March 2024. The move comes at a time when plans are afoot to develop Lucknow as the country's first AI City. According to the state government, this investment is 67% higher than any other technology infrastructure in the country. (FOR REPRESENTATION) The initiative is part of a major push to develop Uttar Pradesh as the new IT destination. The proposed investment is meant for 10,000 Graphics Processing Units, multi-modal language models and an AI innovation center. The state government will soon come up with the draft AI policy in line with Vision 2047. According to the state government, this investment is 67% higher than any other technology infrastructure in the country. Apart from this, a high-tech AI-based traffic management system is being proposed for Lucknow. Prime Minister Narendra Modi's constituency, Varanasi, is already in the process of implementing an AI-enabled smart traffic system. Under the state government's flagship initiative, AI Pragya, over 10 lakh youths, teachers, gram pradhans, government employees, and farmers are being trained in AI, machine learning, data analytics and cybersecurity in partnership with tech giants like Microsoft, Intel, Google, and Guvi. The state government aims to train 1.5 lakh people every month, with industry-ready certifications part of the programme. AI-powered systems such as CCTV surveillance, facial recognition, number plate tracking, and SOS alert systems have been implemented in 17 municipal corporations and Gautam Buddh Nagar. These are directly integrated with the 112 helpline and police control rooms. Additionally, the 'Jarvis' AI monitoring system is active in 70 prisons, ensuring 24x7 surveillance of inmates. Under the UP Agris Project, 10 lakh farmers are being connected to AI-based technologies such as smart irrigation, drone mapping, pest detection, and digital market access. The initiative also involves 10,000 women's self-help groups as active partners. In the revenue department, satellite imaging and AI algorithms are being used for land consolidation and record management. This has enabled accurate digital mapping, transparent land distribution, and reduction of disputes. To protect mineral resources, 57 unmanned AI enabled check gates have been set up across 25 districts. Illegal mining is being monitored using RFID tags, geofencing, and AI camera-equipped weighbridges. In the healthcare sector, the country's first AI-based breast cancer screening centre has been established in Fatehpur, according to the state government.
Time of India
2 hours ago
- Time of India
Sanctions risk: Indian firm defends explosive shipment to Russia; says material for civilian use only
This is an AI-generated image, used for representational purposes only. An Indian company that exported $1.4 million worth of an explosive compound to Russia last December said it complied with Indian rules and that the shipment was strictly for civilian industrial purposes, not military use. According to news agency Reuters, Ideal Detonators Private Limited confirmed that the material exported, HMX, also known as octogen, was not of military grade. 'The shipment ... is for industrial activity and it's a civil explosive,' the Telangana-based firm said in an email response. HMX is known for its powerful military applications, including use in missile and torpedo warheads and other advanced weapon systems. The US government has called the compound 'critical for Russia's war effort' and has warned that any sale of such materials to Moscow could trigger sanctions under its treasury department's guidelines. Reuters first reported that Ideal Detonators shipped HMX to two Russian buyers in last December, Promsintez and High Technology Initiation Systems (HTIS), according to Indian customs data. One of them, Promsintez, has ties to Russia's military, a Ukrainian security official claimed, and its factory was targeted by a Ukrainian drone attack in April. The US state department said it had communicated with India about the risks involved in doing military-related business with Russia. "We have repeatedly made clear to all our partners, including India, that any foreign company or financial institution that does business with Russia's military industrial base are at risk of US sanctions," a spokesperson was quoted as saying by Reuters. India's foreign ministry, however, responded that all dual-use exports are regulated under a robust legal framework. 'India has been carrying out exports of dual-use items taking into account its international obligations on non-proliferation,' the ministry said. According to Reuters, HMX is also used in limited civilian areas such as mining and industrial blasting. HTIS, one of the recipients, claims to manufacture explosives for mining and engineering projects. HTIS is listed as a subsidiary of Madrid-based Maxam, which is controlled by US private equity firm Rhone Capital. Maxam is reportedly in the process of divesting its Russian subsidiaries. While India has deepened ties with Washington in recent years, its historic defense and trade relationship with Moscow remains intact. Indian oil purchases and other trade with Russia have remained strong, even amid global sanctions over the Ukraine war. Stay informed with the latest business news, updates on bank holidays and public holidays . AI Masterclass for Students. Upskill Young Ones Today!– Join Now
NDTV
2 hours ago
- NDTV
"One Of The Craziest Moments Of My Life": Akhil Patel On Serving Chai To PM Modi And Starmer
Indian-origin tea entrepreneur Akhil Patel had a day to remember at Chequers, the official country residence of the UK Prime Minister, on July 24. Mr Patel served a steaming cup of masala chai to Prime Minister Narendra Modi and his British counterpart Keir Starmer. Photographs shared by PM Modi on X (formerly Twitter) captured both leaders waiting for their tea at Patel's stall. Dressed in a traditional kurta and Nehru jacket, Mr Patel was captured pouring masala chai from a kettle into paper cups. 'Chai Pe Charcha' with PM Keir Starmer at stronger India-UK ties! @Keir_Starmer — Narendra Modi (@narendramodi) July 24, 2025 Now, in an Instagram clip, the founder of Amala Chai gave his followers 'a quick recap of a surreal day'. 'I just got on Modi's Instagram!' he began, clearly astonished. Detailing the invitation, Mr Patel said he was asked to serve tea at Chequers 'to celebrate the UK-India free trade deal.' 'As one of the few selected brands there, little did I know I'd be serving chai to huge UK and Indian ministers and Modi and Starmer,' he said. Among those who visited his stall were UK Business Secretary Jonathan Reynolds and Health Secretary Wes Streeting. 'They were loving it, coming back for multiple cups,' said Patel, adding that even India's National Security Advisor Ajit Doval and External Affairs Minister S Jaishankar sampled his tea. Recalling the high point of the day, Patel said, 'Then the big boys started coming my way, walking by the side of me and standing right in front of me, asking for a cup of chai.' He was referring to PM Modi and Keir Starmer. 'I served the chai, and then I dropped the line, 'from one chaiwala to another',' he added. 'Possibly one of the craziest moments of my life, I just served chai to Modi and Starmer, and Starmer loved it,' he added. His Instagram caption read, 'A quick recap of a surreal day. Yesterday, I was invited by @10downingstreet to serve chai at Chequers — to @narendramodi, @keirstarmer, and Indian & UK ministers. Can we just take a moment to realise how mad that is? There I was, in the UK Prime Minister's house, serving masala chai — and not one person wanted coffee. From one chaiwala to another, that was a special day. Right… I'm getting off the internet now to make a cup of chai.' View this post on Instagram A post shared by Amala Chai | Masala Chai (@amala_chai) In 2019, inspired by his grandma's recipe, he founded Amala Chai. Described as "Chai That Feels Like Home," the brand's masala chai begins at the source, with single-origin tea and spices from family farms in Assam and Kerala. Since its launch six years ago, Patel's Amala Chai has grown and now serves customers at five locations across London.
