Microsoft probing if Chinese hackers learned SharePoint flaws through alert: Report
The tech giant is probing if a leak from the Microsoft Active Protections Program (MAPP) led to the widespread exploitation of vulnerabilities in its SharePoint software globally over the past several days, the report said. Microsoft said in a statement provided to Reuters that the company continually evaluates "the efficacy and security of all of our partner programs and makes the necessary improvements as needed." A researcher with Vietnamese cybersecurity firm Viettel demonstrated the SharePoint vulnerability in May at the Pwn2Own cybersecurity conference in Berlin. The conference, put on by cybersecurity company Trend Micro's Zero Day Initiative, rewards researchers in the pursuit of ethically disclosing software vulnerabilities. The researcher, Dinh Ho Anh Khoa, was awarded $100,000 and Microsoft issued an initial patch for the vulnerability in July, but members of the MAPP program were notified of the vulnerabilities on June 24, July 3 and July 7, Dustin Childs, head of threat awareness for the Zero Day Initiative at Trend Micro, told Reuters Friday. Microsoft first observed exploit attempts on July 7, the company said in the Tuesday blog post. Childs told Reuters that "the likeliest scenario is that someone in the MAPP program used that information to create the exploits." It's not clear which vendor was responsible, Childs said, "but since many of the exploit attempts come from China, it seems reasonable to speculate it was a company in that region." It would not be the first time that a leak from the MAPP program led to a security breach. More than a decade ago, Microsoft accused a Chinese firm, Hangzhou DPTech Technologies Co., Ltd., of breaching its non-disclosure agreement and expelled it from the program. "We recognize that there is the potential for vulnerability information to be misused," Microsoft said in a 2012 blog post, around the time that information first leaked from the program. "In order to limit this as much as possible, we have strong non-disclosure agreements (NDA) with our partners. Microsoft takes breaches of its NDAs very seriously." Any confirmed leak from MAPP would be a blow to the program, which is meant to give cyber defenders the upper hand against hackers who race to parse Microsoft updates for clues on how to develop malicious software that can be used against still-vulnerable users. Launched in 2008, MAPP was meant to give trusted security vendors a head start against the hackers, for example, by supplying them with detailed technical information and, in some cases, "proof of concept" software that mimics the operation of genuine malware. Elevate your knowledge and leadership skills at a cost cheaper than your daily tea. Paid less than plumbers? The real story of freshers' salaries at Infy, TCS.
Can medicines inject the vitamins Amazon is missing?
Can victims of Jane Street scam be compensated by investor protection funds?
We prefer to have idle pilots than grounded planes: Akasa CFO on losses, funding hiccups, Boeing
What if Tata Motors buys Iveco's truck unit? Will it propel or drag like JLR?
How private ARCs are losing out to a govt-backed firm dealing in bad loans
Stock picks of the week: 5 stocks with consistent score improvement and return potential of 13 to 45% in 1 year
Short-term valuation headwinds? Yes. Long-term growth potential intact? Yes. Which 'Yes' is more relevant?
F&O Radar| Deploy Bull Call Spread in Nifty to gain from a 'buy-on-dips' stance
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
&w=3840&q=100)
First Post
22 minutes ago
- First Post
OPEC+ to hike oil output again in September amid Trump push to cut Russian imports
OPEC+ agreed on Sunday to raise oil production by 547,000 barrels per day for September, the latest in a series of accelerated output hikes to regain market share, as concerns mount over potential supply disruptions linked to Russia. read more A brief virtual meeting among eight OPEC+ countries on Sunday ended with an agreement to sharply increase oil production in September, even as the United States steps up pressure on India to curb imports of Russian oil, part of Washington's broader strategy to push Moscow towards peace talks with Ukraine. President Donald Trump has said he wants progress by August 8. In its post-meeting statement, OPEC+ pointed to strong global economic indicators and low inventory levels as key drivers behind its decision. Crude prices have remained robust, with Brent futures closing near $70 per barrel on Friday—up from a low of about $58 earlier this year, buoyed in part by seasonal demand. STORY CONTINUES BELOW THIS AD 'Given fairly strong oil prices at around $70, it does give OPEC+ some confidence about market fundamentals,' said Amrita Sen, co-founder of Energy Aspects, adding that the market structure was also indicating tight stocks. The eight participating nations will raise their collective output by 547,000 barrels per day in September, completing the accelerated reversal of a 2.2 million-bpd supply reduction imposed in 2023. The increase also accounts for a phased-in boost from the United Arab Emirates. OPEC+ sources told Reuters that the same group would reconvene on September 7, when they may evaluate whether to reintroduce another layer of cuts amounting to roughly 1.65 million bpd, measures that are officially extended through the end of next year. The broader OPEC+ coalition, comprising 10 non-OPEC producers including Russia and Kazakhstan, has historically curbed production to stabilise prices. However, the alliance pivoted this year, aiming to reclaim lost market share, a move aligned with calls from Trump urging the group to increase supply. The phased hikes began in April with a 138,000-bpd boost, followed by steeper increments of 411,000 bpd over the next three months, 548,000 bpd in August, and now 547,000 bpd for September. 'So far the market has been able to absorb very well those additional barrels also due to stockpiliing activity in China,' said Giovanni Staunovo of UBS. 'All eyes will now shift on the Trump decision on Russia this Friday." As well as the voluntary cut of about 1.65 million bpd from the eight members, OPEC+ still has a 2-million-bpd cut across all members, which also expires at the end of 2026. STORY CONTINUES BELOW THIS AD 'OPEC+ has passed the first test,' said Jorge Leon of Rystad Energy and a former OPEC official, as it has fully reversed its largest cut without crashing prices. 'But the next task will be even harder: deciding if and when to unwind the remaining 1.66 million barrels, all while navigating geopolitical tension and preserving cohesion." With inputs from agencies
Time of India
38 minutes ago
- Time of India
Even OpenAI's chairman struggles to keep up with AI: Bret Taylor calls the once-in-a-lifetime boom ‘insane'
— plzaccelerate (@plzaccelerate) Living through a technological renaissance You Might Also Like: Billionaire Vinod Khosla predicts AI teachers will disrupt education and careers. Here's how A human job in an AI world Bill Gates agrees: AI is a tool, not the artist You Might Also Like: Bill Gates predicts only three jobs will survive the AI takeover. Here is why If you've been struggling to keep pace with the whirlwind that is Artificial Intelligence , you're in good company. Bret Taylor , Chairman of OpenAI , the organization at the epicenter of the AI revolution , admits he too is barely able to stay afloat amid the relentless stream of a candid conversation hosted by South Park Commons with Aditya Agarwal, Taylor said, 'I am the chairman of OpenAI. I run a fairly successful applied AI company, and I have trouble keeping up with everything going on.' His words offer a rare moment of vulnerability in a world that often presents AI experts as unflappable makes his admission particularly striking is his vantage point. Taylor is not just on the frontline — he's in the command tower. From overseeing OpenAI's advancements to observing the competition's rapid rise, his plate is full. And yet, even he finds it dizzying. 'I'm probably most well situated in the world almost to do so… So it just feels insane to me right now,' he sees this turbulent moment as historic — and oddly poetic. 'I think it's a privilege... I hope you're enjoying being in this moment because... I think our society will be very different 10 years from now,' he said, reflecting on how rare it is to consciously live through such a transformative era. 'I pinch myself every day.'Indeed, the AI domain is experiencing something akin to a gold rush — except instead of panning rivers, companies are mining data and releasing new models almost weekly. OpenAI, once the undisputed leader, is now facing heated competition. Google's Gemini, Elon Musk's Grok, and emerging Chinese open-source platforms like DeepSeek and Kimi have challenged its dominance with increasingly capable on the product side, innovation is relentless. ChatGPT has become the fifth most visited website globally, but it's far from alone. New AI tools tackling niche tasks are sprouting up daily. OpenAI reportedly even attempted to acquire Windsurf, a rising AI startup — a sign of how closely it watches the this pace, Taylor offers a reassuring message: humans aren't being pushed out of the equation just yet. Speaking to Business Insider, he argued that formal computer science education remains more relevant than ever. 'Studying computer science is a different answer than learning to code, but I would say I still think it's extremely valuable,' he emphasized that such degrees instill systems thinking — a way of understanding how components interact in complex systems, which remains vital for innovation. He pointed out how topics like Big O notation, cache misses, and randomized algorithms teach the kind of structured logic that no AI model can fully Taylor's view is none other than Microsoft co-founder Bill Gates. In conversations on The Tonight Show, Gates predicted that programming will "remain a human job for at least a century.' His reason? Writing software isn't about typing code; it's about pattern recognition, judgment, and making creative like GitHub Copilot and ChatGPT may streamline debugging and accelerate development, but Gates insists, 'They are power chisels, not replacement carpenters.' AI may help you shape the material, but the blueprint still comes from the human mind.
Hindustan Times
an hour ago
- Hindustan Times
Air India cancels Singapore-Chennai flight due to technical issue
New Delhi, Aug 3 (PTI) Air India on Sunday cancelled its flight from Singapore to Chennai due to a technical issue. In recent days, some of the Air India planes have faced technical snags.(File/Reuters) The flight AI349 was to be operated with an Airbus A321. In a statement on Sunday, the airline said the flight AI349 scheduled to operate from Singapore to Chennai has been cancelled due to a maintenance task identified prior to departure which required additional time for rectification. "Arrangements are being made to fly the passengers to Chennai at the earliest. Hotel accommodation is being provided, and full refunds on cancellation, or complimentary rescheduling is also being offered to passengers based on their preference," Air India said. According to the airline, ground colleagues in Singapore are making every possible effort to minimise the inconvenience caused to the passengers due to this unforeseen disruption. In recent days, some of the Air India planes have faced technical snags.
