What to know about a vulnerability being exploited on Microsoft SharePoint servers
The company issued an alert to customers Saturday saying it was aware of the zero-day exploit being used to conduct attacks and that it was working to patch the issue. Microsoft updated its guidance Sunday with instructions to fix the problem for SharePoint Server 2019 and SharePoint Server Subscription Edition. Engineers were still working on a fix for the older SharePoint Server 2016 software.
'Anybody who's got a hosted SharePoint server has got a problem,' said Adam Meyers, senior vice president with CrowdStrike, a cybersecurity firm. 'It's a significant vulnerability.'
Companies and government agencies around the world use SharePoint for internal document management, data organisation and collaboration.
A zero-day exploit is a cyberattack that takes advantage of a previously unknown security vulnerability. 'Zero-day' refers to the fact that the security engineers have had zero days to develop a fix for the vulnerability.
According to the U.S. Cybersecurity and Infrastructure Security Agency (CISA), the exploit affecting SharePoint is 'a variant of the existing vulnerability CVE-2025-49706 and poses a risk to organizations with on-premise SharePoint servers.'
Security researchers warn that the exploit, reportedly known as 'ToolShell,' is a serious one and can allow actors to fully access SharePoint file systems, including services connected to SharePoint, such as Teams and OneDrive.
Google's Threat Intelligence Group warned that the vulnerability may allow bad actors to 'bypass future patching.'
Eye Security said in its blog post that it scanned over 8,000 SharePoint servers worldwide and discovered that at least dozens of systems were compromised. The cybersecurity company said the attacks likely began on July 18.
Microsoft said the vulnerability affects only on-site SharePoint servers used within businesses or organisations, and does not affect Microsoft's cloud-based SharePoint Online service.
But Michael Sikorski, CTO and Head of Threat Intelligence for Unit 42 at Palo Alto Networks, warns that the exploit still leaves many potentially exposed to bad actors.
'While cloud environments remain unaffected, on-prem SharePoint deployments — particularly within government, schools, health care including hospitals, and large enterprise companies — are at immediate risk.'
The vulnerability targets SharePoint server software so customers of that product will want to immediately follow Microsoft's guidance to patch their on-site systems.
Although the scope of the attack is still being assessed, CISA warned that the impact could be widespread and recommended that any servers impacted by the exploit should be disconnected from the internet until they are patched.
'We are urging organizations who are running on-prem SharePoint to take action immediately and apply all relevant patches now and as they become available, rotate all cryptographic material, and engage professional incident response. An immediate, band-aid fix would be to unplug your Microsoft SharePoint from the internet until a patch is available,' Sikorski advises.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Hindustan Times
an hour ago
- Hindustan Times
Women's share in blue-grey collar jobs growing, but attrition remains a challenge: Report
Even as women's overall share in blue-grey collar roles rose to 19 per cent in 2023-24, there is a huge attrition rate, especially with those with less than one year of experience, a report said on Thursday. The report further revealed that 54 per cent of women who are currently working are unhappy with pay, and 80 per cent save less than ₹ 2,000 per month.(Pixabay/Representative) Despite women's overall share in blue-grey collar roles rising to 19 per cent in FY24 from 16 per cent in FY21, as per Periodic Labour Force Survey (PLFS) Annual Report, the cohort faces high early attrition rates that threatens productivity, continuity, and India's ability to achieve its USD 30 trillion economy goal by 2047, according to a report, 'State of Women in the Blue-Grey Collar Workforce-2025'. State of Women in the Blue-Grey Collar Workforce-2025' report by the Udaiti Foundation and Quess Corp is based on a survey with over 10,000 current and 1,500 former women workers across sectors like retail, manufacturing, BFSI, and services. According to the report, 52 per cent of the respondents with less than one year of experience said they are planning to quit within the next 12 months, compared to just 3 per cent among those who cross the two-year mark, underscoring the need for interventions to arrest attrition at an early stage. Of the 1,500 women who left jobs in the last 6 months, 67 per cent of them are out of the workforce for multiple reasons, it stated. "There is tremendous opportunity for India to unlock its full economic potential. We have demonstrated that we can open doors for women, and the unlock lies in creating systems that enable them to thrive and grow. Women aren't leaving because they lack capability, they are leaving because we haven't yet built the infrastructure and designed workplaces for their success," the Udaiti Foundation Founding CEO Pooja Goyal said. With India's blue-grey collar economy projected to comprise 70 per cent of the workforce by 2030, investing in women's retention and advancement isn't just the right thing to do, it's essential for sustainable growth, she added. The report further revealed that 54 per cent of women who are currently working are unhappy with pay, and 80 per cent save less than ₹2,000 per month. Of those earning above ₹20,000 are 21 per cent less likely to drop out in the near term, and among the women employees who are currently out of the workforce, 42 per cent said better pay would motivate them to return to work, indicating that better pay supports retention, it stated. The report also found that 57 per cent of the women respondents, who are currently working, face transport challenges and 11 per cent feel unsafe while commuting, especially during their night shifts. Single migrant women in manufacturing and EMPI sectors rely on hostels (23 per cent) but they face limited safe commuting options, said the report. One in five women who have left the workforce said they will return to work if the workplace was closer to home, indicating that improving mobility solutions holds significant potential to boost workforce participation, it said. "It's not just a social imperative, but essential for building a productive, competitive economy. The staffing industry plays a significant role in providing pathways for women to join formal employment. We need to now develop robust, gender-intentional retention strategies that enable the grey and blue collared women workforce to grow," Quess Corp ED and CEO Guruprasad Srinivasan added.
Mint
2 hours ago
- Mint
Trumps order to block woke AI in government encourages tech giants to censor their chatbots
Tech companies looking to sell their artificial intelligence technology to the federal government must now contend with a new regulatory hurdle: prove their chatbots aren't 'woke.' President Donald Trump's sweeping new plan to counter China in achieving 'global dominance' in AI promises to cut regulations and cement American values into the AI tools increasingly used at work and home. But one of Trump's three AI executive orders signed Wednesday — the one "preventing woke AI in the federal government' — also mimics China's state-driven approach to mold the behavior of AI systems to fit its ruling party's core values. Several leading providers of the AI language models targeted by the order — products like Google's Gemini and Microsoft's Copilot — have so far been silent on Trump's anti-woke directive, which still faces a study period before it gets into official procurement rules. While the tech industry has largely welcomed Trump's broader AI plans, the anti-woke order forces the industry to leap into a culture war battle — or try their best to quietly avoid it. 'It will have massive influence in the industry right now,' especially as tech companies 'are already capitulating' to other Trump administration directives, said civil rights advocate Alejandra Montoya-Boyer, senior director of The Leadership Conference's Center for Civil Rights and Technology. The move also pushes the tech industry to abandon years of work to combat the pervasive forms of racial and gender bias that studies and real-world examples have shown to be baked into AI systems. 'First off, there's no such thing as woke AI,' she said. 'There's AI technology that discriminates and then there's AI technology that actually works for all people.' Molding the behaviors of AI large language models is challenging because of the way they're built. They've been trained on most of what's on the internet, reflecting the biases of all the people who've posted commentary, edited a Wikipedia entry or shared images online. 'This will be extremely difficult for tech companies to comply with,' said former Biden official Jim Secreto, who was deputy chief of staff to U.S. Secretary of Commerce Gina Raimondo, an architect of many of Biden's AI industry initiatives. 'Large language models reflect the data they're trained on, including all the contradictions and biases in human language.' Tech workers also have a say in how they're designed, from the global workforce of annotators who check their responses to the Silicon Valley engineers who craft the instructions for how they interact with people. Trump's order targets those 'top-down' efforts at tech companies to incorporate what it calls the 'destructive' ideology of diversity, equity and inclusion into AI models, including 'concepts like critical race theory, transgenderism, unconscious bias, intersectionality, and systemic racism.' For Secreto, the order resembles China's playbook in 'using the power of the state to stamp out what it sees as disfavored viewpoints." The method is different, with China relying on direct regulation through its Cyberspace Administration, which audits AI models, approves them before they are deployed and requires them to filter out banned content such as the bloody Tiananmen Square crackdown on pro-democracy protests in 1989. Trump's order doesn't call for any such filters, relying on tech companies to instead show that their technology is ideologically neutral by disclosing some of the internal policies that guide the chatbots. 'The Trump administration is taking a softer but still coercive route by using federal contracts as leverage,' Secreto said. 'That creates strong pressure for companies to self-censor in order to stay in the government's good graces and keep the money flowing.' The order's call for 'truth-seeking' AI echoes the language of the president's one-time ally and adviser Elon Musk, who frequently uses that phrase as the mission for the Grok chatbot made by his company xAI. But whether Grok or its rivals will be favored under the new policy remains to be seen. Despite a 'rhetorically pointed' introduction laying out the Trump administration's problems with DEI, the actual language of the order's directives shouldn't be hard for tech companies to comply with, said Neil Chilson, a Republican former chief technologist for the Federal Trade Commission. 'It doesn't even prohibit an ideological agenda,' just that any intentional methods to guide the model be disclosed, said Chilson, who is now head of AI policy at the nonprofit Abundance Institute. 'Which is pretty light touch, frankly.' Chilson disputes comparisons to China's cruder modes of AI censorship. 'There is nothing in this order that says that companies have to produce or cannot produce certain types of output,' he said. 'It says developers shall not intentionally encode partisan or ideological judgments. That's the exact opposite of the Chinese requirement.' So far, tech companies that have praised Trump's broader AI plans haven't said much about the order. OpenAI on Thursday said it is awaiting more detailed guidance but believes its work to make ChatGPT objective already makes the technology consistent with what the order requires. Microsoft, a major supplier of email, cloud computing and other online services to the federal government, declined to comment Thursday. Musk's xAI, through spokesperson Katie Miller, a former Trump official, pointed to a company comment praising Trump's AI announcements as a 'positive step' but didn't respond to a follow-up question about how Grok would be affected. Anthropic, Google, Meta, and Palantir didn't immediately respond to emailed requests for comment Thursday. AI tools are already widely used in the federal government, including AI platforms such as ChatGPT and Google Gemini for internal agency support to summarize the key points of a lengthy report. The ideas behind the order have bubbled up for more than a year on the podcasts and social media feeds of Trump's top AI adviser David Sacks and other influential Silicon Valley venture capitalists, many of whom endorsed Trump's presidential campaign last year. Much of their ire centered on Google's February 2024 release of an AI image-generating tool that produced historically inaccurate images before the tech giant took down and fixed the product. Google later explained that the errors — including one user's request for American Founding Fathers that generated portraits of Black, Asian and Native American men — was the result of an overcompensation for technology that, left to its own devices, was prone to favoring lighter-skinned people because of pervasive bias in the systems. Trump allies alleged that Google engineers were hard-coding their own social agenda into the product, and made it a priority to do something about it. 'It's 100% intentional,' said prominent venture capitalist and Trump adviser Marc Andreessen on a podcast in December. 'That's how you get Black George Washington at Google. There's override in the system that basically says, literally, 'Everybody has to be Black.' Boom. There's squads, large sets of people, at these companies who determine these policies and write them down and encode them into these systems.' Sacks credited a conservative strategist for helping to draft the order. 'When they asked me how to define 'woke,' I said there's only one person to call: Chris Rufo. And now it's law: the federal government will not be buying WokeAI,' Sacks wrote on X. Rufo responded that, in addition to helping define the phrase, he also helped 'identify DEI ideologies within the operating constitutions of these systems.' This article was generated from an automated news agency feed without modifications to text.
NDTV
3 hours ago
- NDTV
OpenAI Gearing Up To Launch GPT-5 In August: Report
Artificial intelligence pioneer OpenAI plans to launch its GPT-5 model as early as August, The Verge reported on Thursday, citing sources familiar with the plans. The new model, which was expected to launch this summer, will be positioned as an AI system that incorporates distinct models and can perform different functions as opposed to just a single AI model. OpenAI did not immediately respond to a Reuters request for comment. The Microsoft-backed startup's GPT-5 will incorporate its o3 model along with other technologies, CEO Sam Altman had said in February, in a bid to simplify its offerings. The startup ultimately aims to merge the o-series and GPT-series models as it looks to create AI systems that can utilize all available tools and handle a variety of tasks. "While GPT-5 looks likely to debut in early August, OpenAI's planned release dates often shift to respond to development challenges, server capacity issues, or even rival AI model announcements and leaks," according to the report.
