Microsoft cyberattack hits 100 organisations, security firms say
Two of the organisations that helped uncover the attack announced their findings on Monday.
On Saturday, Microsoft issued an alert about 'active attacks' on self-hosted SharePoint servers, which are widely used by organisations to share documents and collaborate within others. SharePoint instances run off of Microsoft servers were unaffected.
Dubbed a 'zero-day' because it leverages a previously undisclosed digital weakness, the hacks allow spies to penetrate vulnerable servers and potentially drop a backdoor to secure continuous access to victim organisations.
Vaisha Bernard, the chief hacker at Eye Security, a Netherlands-based cybersecurity firm which discovered the hacking campaign targeting one of its clients on Friday, said that an internet scan carried out with the Shadowserver Foundation had uncovered nearly 100 victims altogether – and that was before the technique behind the hack was widely known.
'It's unambiguous,' Bernard said. 'Who knows what other adversaries have done since to place other backdoors.'
He declined to identify the affected organisations, saying that the relevant national authorities had been notified.
The Shadowserver Foundation confirmed the 100 figure and said that most of those affected were in the United States and Germany and that the victims included government organisations.
Another researcher said that, so far, the spying appeared to be the work of a single hacker or set of hackers.
'It's possible that this will quickly change,' said Rafe Pilling, director of threat intelligence at Sophos, a British cybersecurity firm.
A Microsoft spokesperson said in an emailed statement that it had 'provided security updates and encourages customers to install them'.
It was not clear who was behind the ongoing hack. The FBI said on Sunday it was aware of the attacks and was working closely with its federal and private-sector partners, but offered no other details. Britain's National Cyber Security Centre said in a statement that it was aware of 'a limited number' of targets in the United Kingdom. A researcher tracking the hacks said that the campaign appeared initially aimed at a narrow set of government-related organisations.
Potential targets
The pool of potential targets remains vast. According to data from Shodan, a search engine that helps to identify internet-linked equipment, more than 8,000 servers online could theoretically have already been compromised by hackers.
Those servers include major industrial firms, banks, auditors, healthcare companies and several US state-level and international government entities.
'The SharePoint incident appears to have created a broad level of compromise across a range of servers globally,' said Daniel Card of British cybersecurity consultancy, PwnDefend.
'Taking an assumed breach approach is wise, and it's also important to understand that just applying the patch isn't all that is required here.'
On Wall Street, Microsoft's stock is about even with the market open as of 3pm in New York (19:00 GMT), up by only 0.06 percent, and has gone up more than 1.5 percent over the last five days of trading.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Al Jazeera
18 hours ago
- Al Jazeera
With Trump go-ahead, Skydance and Paramount to complete merger in August
The entertainment company Paramount Global is expected to close its $8bn merger agreement with Skydance Media on August 7, a date that marks two weeks after the administration of President Donald Trump gave its approval. On Friday, the two companies announced the final stage of the year-long deal, which was first announced in July 2024. The merger is considered a massive shake-up in the media landscape of the United States, drawing to a close the reign of the powerful Redstone family over the Paramount entertainment empire. But the merger has garnered even more attention in recent weeks for its political backdrop. On Thursday, the Federal Communications Commission (FCC) gave the green light for the merger to go forward, after a series of moves under Paramount that were widely interpreted as concessions to the Trump administration. The FCC is technically an independent agency of the federal government, but since taking office in January for his second term, President Trump has sought to bring such agencies under his influence, including by appointing loyal allies to their leadership. That put the fate of the Paramount-Skydance merger in question, particularly given Trump's combative relationship with CBS Broadcasting Inc, one of Paramount's premier properties. Conflicts over content Trump has long taken an adversarial approach to the news media, and CBS's flagship news programmes were no exception. Some of those tensions came to a head in the final weeks of the 2024 presidential election, when Trump, a Republican, was facing off against Democratic contender Kamala Harris. The TV news magazine 60 Minutes had a tradition of interviewing each of the major party nominees for the presidency in the lead-up to the vote, and it had invited both Trump and Harris to participate. Harris accepted the invitation, but 60 Minutes said Trump cancelled. Steven Cheung, a spokesperson for Trump, disputed that characterisation. 'There were initial discussions, but nothing was ever scheduled or locked in,' Cheung wrote on social media. 'They also insisted on doing live fact checking, which is unprecedented.' The back-and-forth escalated when 60 Minutes aired two different cuts from its interview with Harris. One version, which aired on a sister programme Face The Nation, featured more of Harris's answer about her stance towards Israel. The other version, which aired on the 60 Minutes broadcast, was shorter. Trump called the different edits evidence of deceptive reporting tactics and filed a lawsuit against Paramount, CBS's parent company. 'CBS used its national platform on 60 Minutes to cross the line from the exercise of judgment in reporting to deceitful, deceptive manipulation of news,' his court filing alleged. 'That is false,' 60 Minutes responded in a statement to its website. 'When we edit any interview, whether a politician, an athlete, or movie star, we strive to be clear, accurate and on point. The portion of her answer on 60 Minutes was more succinct, which allows time for other subjects in a wide ranging 21-minute-long segment.' While many media experts expected Paramount to prevail on the merits of the case, the company instead sought to negotiate an end to the case. Earlier this month, it agreed to pay $16m to Trump, to go to his future presidential library. Shortly thereafter, another top CBS show, The Late Show with Stephen Colbert, revealed it had been cancelled, allegedly for financial reasons. But the timing and unexpected nature of the cancellation drew speculation that it might have been an attempt to appease Trump and streamline the merger, given the fact that Colbert frequently lambasted the Republican president on his show. Trump himself posted on Truth Social, 'I absolutely love that Colbert' got fired. His talent was even less than his ratings.' The Late Show was consistently the top-rated late-night comedy show, and it had won a Peabody Award and multiple Emmy nods. South Park TV show takes aim Within weeks of both the 60 Minutes lawsuit settlement and the cancellation of The Late Show, the FCC gave its blessing to the merger between Paramount and Skydance. Under the merger, Skydance founder David Ellison, the son of Oracle Corporation CEO Larry Ellison, is expected to helm operations. Upon the merger's approval, Trump's appointee to lead the FCC, Brendan Carr, released a statement echoing some of the president's criticisms of major news outlets. He also hinted that the merger would result in changes to CBS's news output. 'Americans no longer trust the legacy national news media to report fully, accurately, and fairly,' he wrote. 'It is time for a change. That is why I welcome Skydance's commitment to make significant changes at the once storied CBS broadcasting network.' 'In particular, Skydance has made written commitments to ensure that the new company's programming embodies a diversity of viewpoints from across the political and ideological spectrum.' To ensure compliance with that commitment, Carr said an ombudsman would be appointed to the media giant for a period of at least two years. Carr added that the merger between Skydance and Paramount would also bar the new mega-company from implementing diversity, equity and inclusion (DEI) policies, which are designed to create an equal playing field for people regardless of age, gender, race, ethnicity, religion or ability. But hours after the FCC granted its approval, the Paramount-owned channel Comedy Central aired an episode of the animated series South Park that mocked President Trump and satirised its parent company's $16m settlement. In one scene, an animated Jesus attempts to warn the show's characters about Trump. 'The guy can do whatever he wants now that someone backed down, OK?' the animated Jesus says. 'You guys saw what happened to CBS? Yeah, well, guess who owns CBS? Paramount! You really want to end up like Colbert?' The Trump administration has since blasted the show as irrelevant.
Al Jazeera
a day ago
- Al Jazeera
Photos: US military expands enforcement role at Mexican border under Trump
Published On 25 Jul 2025 25 Jul 2025 United States troop deployments at the border with Mexico have tripled to 7,600 and include every branch of the military – even as the number of attempted illegal crossings plummets. In addition, President Donald Trump has authorised funding for an additional 3,000 Border Patrol agents, offering $10,000 signing and retention bonuses. The military mission at the border is guided from a new command centre at a remote Army intelligence training base located alongside southern Arizona's Huachuca Mountains. There, a community hall has been transformed into a bustling war room, where battalion commanders and staff use digital maps to pinpoint military camps and movements along the nearly 3,200-kilometre (2,000-mile) border. Until now, border enforcement had been the domain of civilian law enforcement, with the military only intermittently stepping in. But in April, large swaths of the border were designated militarised zones, empowering US troops to apprehend immigrants and others accused of trespassing and authorising additional criminal charges that can mean prison time. The two-star general leading the mission says troops are being untethered from maintenance and warehouse tasks to work closely with US Border Patrol agents in high-traffic areas for illegal crossings – and to deploy rapidly to remote, unguarded terrain. 'We don't have a [labour] union. There's no limit on how many hours we can work in a day, how many shifts we can man,' said Army Major-General Scott Naumann. 'I can put soldiers out whenever we need to in order to get after the problem, and we can put them out for days at a time. We can fly people into incredibly remote areas now that we see the cartels shifting [course].' The Trump administration is using the military broadly to boost its immigration operations, from guarding federal buildings in Los Angeles against protests, to assisting Immigration and Customs Enforcement (ICE) in Florida. There are also plans to hold detained immigrants on military bases in New Jersey, Indiana and Texas. Dan Maurer, a law professor at Ohio Northern University and a retired US Army judge advocate officer, said that Trump is aiming to follow through on his campaign promise to crack down on undocumented border crossings. 'It's all part of the same strategy that is a very muscular, robust, intimidating, aggressive response to this – to show his base that he was serious about a campaign promise to fix immigration,' said Maurer. 'It's both norm-breaking and unusual. It puts the military in a very awkward position.'
Al Jazeera
a day ago
- Al Jazeera
Volkswagen profits tumble as tariffs weigh on auto industry
Volkswagen has reported $1.5bn in losses in the first half of the year because of tariffs imposed by United States President Donald Trump. The German carmaker reported a hit as the company revised its full year sales and profit margin forecasts. Volkswagen, Europe's biggest carmaker, now expects this year's operating profit margin to be 4 percent to 5 percent, compared with a previous forecast of 5.5 percent to 6.5 percent. Full-year sales, earlier seen up to 5 percent higher, are expected to be level with the previous year. Investors had largely anticipated a guidance cut after the company held off on assessing the damage from tariffs in the previous quarter and appeared calmed by assurances that the group's luxury brands Audi and Porsche would recover next year after heavy losses in the second quarter. CEO Oliver Blume told investors the company must accelerate its cost-cutting efforts in response to the tariffs. 'We need to shift our cost efforts into high gear and accelerate implementation. After all, we cannot assume that the tariff situation is only temporary,' Blume said. Global carmakers have booked billions of dollars in losses and some have issued profit warnings due to US tariffs. The European industry is also facing stiffening competition from China and domestic regulations aimed at speeding up the electric vehicle transition. Tariff hit Volkswagen is the third automaker this week to report a hit to their profits because of tariffs. Michigan-based General Motors reported that tariffs cost it $1.1bn in the second quarter. Stellantis, the maker of brands including Jeep and Fiat, reported a $2.7bn loss for the first six months of 2025. VW and its competitors are pressing European trade negotiators to strike a deal to reduce a 25 percent US tariff they have faced since April. EU diplomats have indicated that the bloc could be moving towards a broad 15 percent tariff as it seeks to avoid a threatened 30 percent levy from August 1. A deal struck between the US and Japan this week raised hopes for a similar agreement for Europe, boosting carmakers' shares. VW finance chief Arno Antlitz said Volkswagen's profit margin would land roughly in the middle of its guidance with a Japan-style deal, which had a 15 percent tariff rate. He warned, however, that the clock was ticking on finding a deal. 'We are already in July, so the longer we go into the second half of the year, the more we tend to the lower end of the guidance,' he said. Antlitz declined to comment on price increases when pressed by investors on how the company planned to protect its margins against tariffs. Volkswagen reported an operating profit of $4.4bn (3.8 billion euros) in the quarter ended June 30, down 29 percent on the previous year. It cited tariffs and restructuring costs for the decline as well as higher sales of lower-margin all-electric models. While Volkswagen was able to boost deliveries globally by 1.5 percent in the first six months of 2025, the group saw a decline of almost 10 percent in deliveries to the US. North American sales revenue accounted for 18.5 percent of the carmaker's global sales in the first half. Car sales data for June highlighted a broader slowdown in Europe's struggling auto sector – and showed Volkswagen among the laggards as the company undergoes a major overhaul to cut more than 35,000 jobs by the end of the decade. Porsche and Audi are particularly exposed to US tariffs given they have no production there and rely heavily on exports. In the second quarter, Porsche's operating result plunged by more than 90 percent to 154 million euros ($181m) and Audi's by 64 percent to 550 million euros ($647m). 'For both companies, Audi and Porsche, we are expecting that we will touch the bottom this year with positive momentum from 2026 onwards,' Blume said. Despite the losses, VW's stock is on the upswing. As of noon in New York (16:00 GMT), it was up more than 3 percent since the market opened and up more than 12 percent over the last five days in trading. The stocks of other carmakers that also reported tariff hits are trending upwards. Stellantis is up 3.9 percent for the day. GM is about even – up by only about 0.2 percent.
