What To Know About Microsoft SharePoint Hack—Government Agencies And Businesses Targeted
Microsoft deployed an emergency security patch for some users on Sunday night. dpa/picture alliance via Getty Images
In a statement on X, Microsoft said it has released a security update for SharePoint Subscription Edition and SharePoint 2019 users to 'mitigate active attacks' targeting servers running the software.
The company noted that the vulnerability only impacts companies using Microsoft's software to host their own servers, and customers relying on Microsoft's 365 cloud services have not been affected.
Citing government officials and security researchers, the Washington Post reported that the vulnerability affected U.S. federal and state agencies, universities and various businesses.
In a statement on Sunday night, the Cybersecurity and Infrastructure Security Agency (CISA) said it was 'aware of active exploitation of a new…vulnerability enabling unauthorized access to on-premise SharePoint servers.'
The federal agency said the vulnerability allowed malicious actors to 'access file systems and internal configurations, and execute code over the network.'
The security patch released by Microsoft only fixed the vulnerability on the latest 'SharePoint Subscription Edition and SharePoint 2019.' The company said it is still actively working on a fix for the older SharePoint 2016 version. It is unclear how many government entities and businesses are still using the 2016 version. In its advisory, the company advises affected users to 'consider disconnecting your server from the internet until a security update is available.' What Has Microsoft Said?
A Microsoft spokesperson told Reuters that the company has been 'coordinating closely with CISA, DOD Cyber Defense Command and key cybersecurity partners globally throughout our response.'
The hack targeting SharePoint users is referred to as a 'zero-day' attack, as the hackers exploited a previously unknown vulnerability. Dutch cybersecurity firm Eye Security was the first to report on the zero-day exploit over the weekend. The company said its team scanned more than 8,000 SharePoint servers worldwide on Friday and 'discovered dozens of systems actively compromised.' The company stated that these attacks occurred in two waves on July 18 and 19.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
19 minutes ago
- Yahoo
The Latest: Wall Street dips as world stock markets take Trump's tariffs in stride
The Latest: Wall Street dips as world stock markets take Trump's tariffs in stride President Donald Trump began levying higher import taxes on dozens of countries Thursday, just as the economic fallout of his monthslong tariff threats has begun to create visible damage for the U.S. economy. U.S. stocks drifted to a mixed finish. The S&P 500 slipped 0.1%, the Dow Jones Industrial Average dipped 0.5%, and the Nasdaq composite rose 0.3%. The tariffs are at a level not seen in the U.S. in almost 100 years, with Americans expected to pay an average of 18.3% more for imported products. That's the highest rate since 1934, according to the Budget Lab at Yale, a nonpartisan policy research center. Despite the uncertainty, the White House is confident businesses will ramp up new investments and jump-start hiring in ways that can rebalance the U.S. economy as a manufacturing power. Here's the Latest: Dean Cain, former TV Superman and Trump backer, will be sworn in as honorary ICE officer Dean Cain wants to join the U.S. Immigration and Customs Enforcement agency. In an interview with Fox News, Cain said he has already spoken to the agency, which is responsible for the president's mass deportations agenda. Homeland Security spokesperson and Assistant Secretary Tricia McLaughlin said Cain will be sworn in as an 'honorary ICE Officer' in the coming month. McLaughlin referenced Cain's 1990s role in 'Lois & Clark: The New Adventures of Superman' in saying, 'Superman is encouraging Americans to become real-life superheroes.' Earlier this week Cain posted a video encouraging others to join ICE, which aims to expand hiring after a massive infusion of cash from Congress. Cain, 59, told Fox News he was already a sworn deputy sheriff and a reserve police officer. It was not immediately clear what his duties as an honorary officer would entail. Cain has been outspoken in his conservative viewpoints and endorsed Trump in three elections. Trump honors Purple Heart recipients, including 3 who sent him medals after attempt on his life The president recognized nearly 100 recipients at the White House on Thursday at a ceremony in the East Room of the White house. He offered 'everlasting thanks to you and your unbelievable families.' But Trump had special words for the trio of veterans who sent him their medals after the 2024 attempt on his life at a campaign rally in Pennsylvania. Trump said they 'showed me the same unbelievable gesture of kindness.' 'What a great honor to get those Purple Hearts. I guess, in a certain way, it wasn't that easy for me either, when you think of it,' Trump said of the attempt on his life. 'But you went through a lot more than I did, and I appreciate it very much.' Trump signs order for colleges to prove they do not consider race in admissions The order follows a Supreme Court ruling in 2023 against affirmative action. The court allowed colleges to consider how race has shaped students' lives if applicants shared that information in essays. The administration accuses colleges of using personal statements as proxies to consider race. The order signed Thursday has similarities to parts of agreements with Brown and Columbia universities, which agreed to provide data on race as part of settlements to restore their federal funding. Conservatives argue that colleges still consider race through proxy measures, but no clear pattern emerged in the racial makeup of last year's freshman class. Trump orders federal regulators to probe alleged bank discrimination against conservatives The president signed an executive order mandating a probe into whether banks have discriminated against conservatives and certain industries like gun manufacturers and cryptocurrency companies, invoking vast powers to go after entities he alleges have discriminated against him and his allies. The order deals with an issue known as debanking, which is when banks close accounts of individuals or decline to go into business with certain industries. Trump has accused JPMorgan and Bank of America of debanking him and his companies in the past, something both have denied. Trump ordered federal regulators to make sure banks do not discriminate against individuals or companies for their political or religious beliefs. He also ordered regulators to probe when banks may have allegedly discriminated and refer cases to the Department of Justice within 120 days. The move could open banks to potential civil or criminal investigations, fines or other punishments. Administration asks Supreme Court to lift restrictions on Southern California immigration stops The Trump administration asked the Supreme Court to lift a court order blocking immigration stops that a judge found to be indiscriminate in Southern California. The emergency petition comes after an appeals court refused to lift the temporary restraining order. Judge Maame E. Frimpong found there was a 'mountain of evidence' that federal immigration enforcement tactics were violating the Constitution. The administration argues that her order hinders immigration enforcement. Trump notes that he's reached his 200th day in office The president briefly noted that Thursday marked his 200th day in office during a White House event commemorating Purple Heart Day. 'This is 200 days already,' Trump said at the start of the event. 'Time flies.' The 100-day mark is a key benchmark early in a presidential administration, and Trump celebrated the first 100 days of his second term with a speech and rally in Michigan. But the 200-day milestone is not usually noted. Senior Russian UN diplomat says he hasn't heard of any meeting planned with Ukraine's president at summit Russia's deputy U.N. ambassador Dmitry Polyansky also told U.N. reporters that a location for the meeting between Russian President Vladimir Putin and U.S. President Donald next week has been agreed 'that they don't want to discuss.' Asked what Russia's aim is for the meeting, Polyansky said, 'Russia's aims are always peace and security in the world. They are not changing, and that's the same aim that we pursue in this kind of negotiations.' He said he hasn't heard of a meeting with Ukraine's President Volodymyr Zelenskyy, but added, 'I'm not in the loop. I think that these things are now being very actively commented through the channels of two presidents.' Trump says he would meet with Putin even if Putin won't meet with Zelenskyy Trump says he would meet with Russian President Vladimir Putin even if the Russian leader won't meet with Ukrainian President Volodymyr Zelensky. Trump, when asked Thursday by a reporter if Putin would need to meet with Zelenskyy in order to secure a meeting with the U.S., said, 'No, he doesn't. No.' Stephen Moore appears at White House with Trump The White House hastily invited journalists into the Oval Office Thursday afternoon for a surprise appearance by conservative economist Stephen Moore. Trump and Moore, flanked by charts, had some economic data to present. Moore is a favorite of Trump and the president nominated hi to the Federal Reserve board in his first White House term, but Moore could not get confirmed in the Senate. Trump opens the door for private equity and crypto as 401(k) retirement plan options Millions of Americans saving for retirement through 401(k) accounts could have the option of putting their money in higher-risk private equity and cryptocurrency investments, according to an executive order signed Thursday by President Donald Trump that could give those financial players long-sought access to a pool of funds worth trillions. There is no immediate change in how people invest part of their work earnings. Federal agencies would need to rewrite rules and regulations to allow the expanded choices, and that would take months or more to complete. But once done, employers could offer a broader array of mutual funds and investments to workers, according to the White House. New plans could invest in alternative assets, particularly private equity, cryptocurrencies and real estate. The Republican president's order directs the Labor Department and other agencies to redefine what would be considered a qualified asset under 401(k) retirement rules. ▶ Read more about retirement plans Florida Republican House Speaker says his chamber will take up congressional redistricting Florida, the third most U.S. populous state, is preparing to join a widening fight among states grappling for political advantage ahead of the 2026 elections, after Florida's Republican House Speaker Daniel Perez announced Thursday that his chamber will take up congressional redistricting this fall. 'As many of you are aware, there are national conversations ongoing in other states related to midterm redistricting,' Perez wrote in a memo to state lawmakers detailing plans for a select committee on redistricting. The announcement comes as President Donald Trump is pushing GOP-controlled states to redraw their maps to favor Republican candidates and boost his party's prospects ahead of the midterm elections, as his political standing falters. Florida Republican Gov. Ron DeSantis has voiced support for mid-decade redistricting, telling the public to 'stay tuned.' Trump picks economics aide Miran to fill remainder of Federal Reserve spot Stephen Miran, the chairman of the White House Council of Economic Advisers, is Trump's pick to fill the final months of the Fed governorship held by Adriana Kugler, who resigned from the post last week. Miran has been a major defender of Trump's income tax cuts and tariff hikes, arguing that the combination will generate enough growth to reduce budget deficits and drive faster economic growth. He also has played down the risk of Trump's tariffs generating higher inflation, a major source of concern for Fed Chair Jerome Powell, who Trump has criticized for holding off on cuts to the central bank's benchmark interest rate. Miran, who has an economics doctorate from Harvard University, would be in the position until Jan. 31, 2026, when the term is set to expire. US Air Force to deny retirement pay to transgender service members being separated from the service The U.S. Air Force said Thursday it would deny all transgender service members who have served between 15 and 18 years the option to retire early and would instead separate them without retirement benefits. The move means that transgender service members will now be faced with the choice of either taking a lump-sum separation payment offered to junior troops or be removed from the service. An Air Force spokesperson told The Associated Press that 'although service members with 15 to 18 years of honorable service were permitted to apply for an exception to policy, none of the exceptions to policy were approved.' About a dozen service members had been 'prematurely notified' that they would be able to retire before that decision was reversed, according to the spokesperson who spoke on condition of anonymity to discuss internal Air Force policy. All transgender members of the Air Force are being separated from the service under the Trump administration's policies. ▶ Read more about transgender troops EPA cancels $7 billion Biden-era grant program to boost solar energy The Environmental Protection Agency on Thursday terminated a $7 billion grant program that was intended to help pay for residential solar projects for more than 900,000 lower-income U.S. households. It's the latest Trump administration move hindering the nation's shift to cleaner energy. The funding, part of Democratic President Joe Biden's Solar for All program, was awarded to 60 recipients including states, tribes and regions for investments such as rooftop solar and community solar gardens. Solar, a renewable energy, is widely regarded as a way to introduce cleaner power onto the electrical grid and lower energy bills for American consumers. ▶ Read more about residential solar UN chief welcomes all efforts to end the war in Ukraine that respect its territorial integrity U.N. deputy spokesman Farhan Haq, asked for Secretary-General Antonio Guterres' reaction to the announcement of a meeting between U.S. President Donald Trump and Russian President Vladimir Putin, said: 'We'll have to see what happens.' 'But clearly, we do welcome all efforts that are that are intended to bring about peace in Ukraine in line with the U.N. Charter, international law and the resolutions of the General Assembly and Security Council,' Haq said. The U.N. Charter requires all 193 U.N. member states, including Russia and Ukraine, to refrain from using force against any other nation and to respect their sovereignty and territorial integrity. U.N. resolutions call for Russia, which invaded Ukraine in February 2022, to withdraw all its forces from the country. Researchers laid off and science shelved as battle between Harvard and Trump administration continues The loss of an estimated $2.6 billion in federal funding at Harvard has meant that some of the world's most prominent scientists and academics are laying off young researchers. They are shelving years or even decades of research, into everything from opioid addiction to cancer. The funding cuts are part of a monthslong battle that the Trump administration has waged against some the country's top universities including Columbia, Brown and Northwestern. The administration has taken a particularly aggressive stance against Harvard, freezing funding after the country's oldest university rejected a series of government demands issued by a federal antisemitism task force. And despite Harvard's lawsuits against the administration, and settlement talks between the warring parties, researchers are confronting the fact that some of their work may never resume. Harvard University professor Alberto Ascherio has collaborated with the U.S. government to collect blood samples taken from soldiers over the course of two decades for his groundbreaking research to identify the cause of multiple sclerosis and other neurodegenerative diseases. Now that work is on hold indefinitely. 'It's like we have been creating a state-of-the-art telescope to explore the universe, and now we don't have money to launch it,' said Ascherio. 'We built everything and now we are ready to use it to make a new discovery that could impact millions of people in the world and then, 'Poof. You're being cut off.'' United Nations chief calls US tariffs `disheartening news' Secretary-General Antonio Guterres believes all trade wars 'are ruinous and need to be avoided,' U.N. deputy spokesman Farhan Haq said. The secretary-general stresses to all governments that at a time of trade wars 'measures need to be taken to protect the poorest and most vulnerable sectors of society who will certainly suffer as a result of the higher prices,' Haq said. 'Speedway Slammer' nickname for Indiana detention partnership sparks a backlash Department of Homeland Security Secretary Kristi Noem is promoting a deal with the state of Indiana to open 1,000 detention beds for immigrants facing deportation. DHS posted an image of an IndyCar-style race car emblazoned with 'ICE' and the number 5, rolling past a barbed-wire prison wall. 'If you are in America illegally, you could find yourself in Indiana's Speedway Slammer,' Noem said. Speedway, which hosts the Indianapolis 500 — put out a statement saying the town wasn't involved, and IndyCar asked that its intellectual property 'not be utilized moving forward in relation to this matter.' No. 5 is used by IndyCar driver Pato O'Ward, the only Mexican driver in the series. DHS officials said they won't stop promoting the nickname. Senior FBI official who resisted Trump demands is ousted A senior FBI official who served as acting director in the first weeks of the Trump administration and resisted demands to turn over the names of agents who participated in the Jan. 6, 2021, investigations is being forced out of the bureau, according to two people familiar with the matter who spoke to The Associated Press on Thursday. The circumstances of Brian Driscoll's ouster were not immediately clear, but his final day is Friday, said the people, who were not authorized to discuss the personnel move by name and spoke on the condition of anonymity. The Associated Press
Yahoo
19 minutes ago
- Yahoo
Karat Packing: Q2 Earnings Snapshot
CHINO, Calif. (AP) — CHINO, Calif. (AP) — Karat Packing Inc. (KRT) on Thursday reported net income of $10.9 million in its second quarter. The Chino, California-based company said it had profit of 54 cents per share. Earnings, adjusted for stock option expense and non-recurring costs, were 57 cents per share. The company posted revenue of $124 million in the period. _____ This story was generated by Automated Insights ( using data from Zacks Investment Research. Access a Zacks stock report on KRT at Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Yahoo
19 minutes ago
- Yahoo
Black Hat Announces the Global Startup Spotlight Competition
Competition launches to accelerate the identification of new technologies across five distinct global markets SAN FRANCISCO, August 07, 2025--(BUSINESS WIRE)--Black Hat, the cybersecurity industry's most established and in-depth security event series, today announced its Global Startup Spotlight Competition. Expanding beyond the standalone Startup Spotlight Competition that is held at Black Hat events, this global initiative responds to the growing need for increased investment in emerging technologies. During Black Hat USA 2026, and in the months leading up to next year's event, this platform will unite the most promising cybersecurity startups worldwide, enabling them to showcase innovative solutions during a pivotal time for the industry. This news was first announced at the close of the Startup Spotlight Competition during Black Hat USA 2025, as today marks the final day of the event's 6-day programming at the Mandalay Bay Convention Center in Las Vegas. The Startup Spotlight Competition is a pitch competition for cybersecurity startup companies to present their products and solutions in front of a live audience at Black Hat. Over the course of the next year, these competitions will continue to take place at the regional level at all Black Hat events. The winners from all the regional competitions will then be invited to compete in the Global Startup Spotlight Competition, scheduled to take place during the final day of Black Hat USA 2026. "The Startup Spotlight is more than a contest, since it also creates the opportunity to unite cyber startups, investors, and industry experts as they innovate new solutions that protect and shape the future of our digital world," said Brittany Buza, Conference Producer (Startup Spotlight) at Black Hat. "In addition to working to cultivate a global cyber innovation community, the Global Competition will help to level the playing field for innovators who may not otherwise have access to US-based venture capital networks or exposure." Upcoming regional Startup Spotlight Competitions will take place at the following events: SecTor 2025: Applications are currently open at Submissions are due by Monday, August 18. Black Hat Middle East and Africa 2025: Applications to the Cyberseed Startup Competition are currently open at Submissions are due by Monday, October 27. Black Hat Europe 2025: Applications will open on Wednesday, August 20. More on this event can be found here: Black Hat Asia 2026: Applications will open closer to the event, and the event webpage will be available in November 2025. Black Hat USA 2026: Applications will open in April 2026, and the event webpage will be available in February 2026. The winner of the Black Hat USA 2026 Startup Spotlight Competition will be selected during the first main day of the event, and will then be invited to compete in the Global Competition that will take place on the final day of the event. More details on both the regional competitions and the Global Competition will continue to be released over the following months. For more information on upcoming Black Hat events, please visit About Black HatBlack Hat is the cybersecurity industry's most established and in-depth security event series. Founded in 1997, these annual, multi-day events provide attendees with the latest in cybersecurity research, development, and trends. Driven by the needs of the community, Black Hat events showcase content directly from the community through Briefings presentations, Trainings courses, Summits, and more. As the event series where all career levels and academic disciplines convene to collaborate, network, and discuss the cybersecurity topics that matter most to them, attendees can find Black Hat events in the United States, Canada, Europe, Middle East and Africa, and Asia. For more information, please visit View source version on Contacts PRESS Stephanie DeAngeloSenior PR & Communications Manager, Black Hat619.510.1564BlackHatPR@
