Microsoft grapples with another high-profile security incident: Latest on the SharePoint attacks
The company has moved quickly to patch the vulnerabilities over the past few days, saying Tuesday that security updates are now available for all supported versions of its SharePoint Server software. It's urging customers to 'apply these updates immediately to ensure they are protected.'
'With the rapid adoption of these exploits, Microsoft assesses with high confidence that threat actors will continue to integrate them into their attacks against unpatched on-premises SharePoint systems,' the company warned in the post on its security blog.
The incident is the latest test of Microsoft's cybersecurity overhaul, known as the Secure Future Initiative. Launched amid a series of damaging nation-state attacks — and escalated after a critical Cyber Safety Review Board report — the program aims to improve the security of Microsoft's engineering systems and reduce the risk of breaches.
CEO Satya Nadella has declared security the company's top priority, and Microsoft has tied a portion of executive compensation to measurable progress. But the continued emergence of high-impact vulnerabilities — especially in legacy on-premises systems — underscores the scale of the challenge and the urgency of the reforms.
At the same time, Microsoft is expanding its security infrastructure products for customers in the cloud. On Tuesday, the company announced a public preview of the Microsoft Sentinel data lake, a new cloud platform designed to help organizations retain and analyze massive volumes of security data.
Microsoft says the data lake eliminates silos and enables deeper analytics that could help detect long-dwelling or 'low and slow' attacks. The release reflects the company's broader strategy to modernize threat detection and response, especially for customers shifting away from legacy on-premises systems.
The latest developments in the SharePoint vulnerability follow a weekend of emergency patching across government and corporate systems after reports of exploits emerged.
The company identified three China-linked groups behind the attacks: Linen Typhoon and Violet Typhoon, both established Chinese state actors, along with Storm-2603, another China-based threat actor.
Microsoft said its analysis suggests the exploitation attempts began as early as July 7, nearly two weeks before the vulnerabilities were publicly disclosed on July 19.
The fallout has been lessened in part by the fact that the vulnerability doesn't impact cloud-based Microsoft 365 systems.
Microsoft issued patches on July 8 to address related SharePoint vulnerabilities, but attackers later developed new exploits that bypassed those protections by leveraging additional flaws. However customers who diligently applied Microsoft's prior patches and followed its security guidance were still less likely to be impacted.
Among other steps, the company recommended that customers rotate their cryptographic keys, after detecting signs that hackers were using malicious scripts to retrieve MachineKey data, which could allow them to retain access to systems even after patches are applied. Read the Microsoft post for full technical details.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
22 minutes ago
- Yahoo
Microsoft Seeks Evergreen Access to OpenAI's AI Models
Microsoft (NASDAQ:MSFT) is in advanced talks to rewrite its OpenAI deal so it can keep tapping the startup's latest AI models even after the AGI mark. Under the current agreement, hitting AGI which OpenAI defines as machines outpacing humans on most economically valuable taskswould strip Microsoft of those rights come 2030. Warning! GuruFocus has detected 7 Warning Sign with MSFT. So far Microsoft has pumped in $13.75 billion and may walk away with a low? to mid?30% equity stake in a restructured, for?profit OpenAI. OpenAI, meanwhile, is pushing for a bigger slice of revenue and the freedom to serve clients outside Azureincluding government agencies that aren't on Microsoft's cloud. They're also insisting on strict safety standards as models edge toward true AGI. There's a business milestone too: once OpenAI hits about $100 billion in total investor profits, fresh IP clauses kick in and any disagreement over that trigger could wind up in court. Past IP waivers for OpenAI's $6.5 billion io deal and the stalled $2.4 billion Windsurf acquisition show just how high the stakes are. Locking in perpetual access to OpenAI tech is critical for Azure's edge and Microsoft's long?term AI will be watching for deal terms in the coming weeks and any updates at Microsoft's Ignite conference this autumn. This article first appeared on GuruFocus. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Yahoo
22 minutes ago
- Yahoo
NVDA's H20 AI Chips Head Back to China
Nvidia (NASDAQ:NVDA) just locked in permission to ship its H20 AI GPUs back into Chinatwo weeks after filing for the license. White House adviser Kevin Hassett says the Trump team decided it made more sense to keep China buying U.S. chips than to risk them building their own. The H20 isn't as powerful as the global version thanks to export curbs, but it's still the most advanced GPU Nvidia can legally send its way. Warning! GuruFocus has detected 5 Warning Signs with NVDA. Of course, some in Washington aren't thrilled. They worry that sending these chips could hand Beijing a playbook for future chip design, even as it helps Nvidia protect roughly 20% of its global GPU market. Analysts note that as Chinese players like Huawei ramp up, Nvidia could face stiffer competition down the road. For Nvidia, though, getting back into China is crucial for revenue and staying ahead in the AI chip race. Now all eyes are on how quickly those licenses get approved and whether the U.S. tightens or loosens the rules again. This article first appeared on GuruFocus. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Geek Wire
23 minutes ago
- Geek Wire
Microsoft plans record $30 billion in quarterly capital spending to meet surging AI demand
Microsoft plans to invest more than $30 billion in capital expenditures in the upcoming quarter — a new high — as it races to expand its cloud and AI infrastructure. Amy Hood, the company's chief financial officer, disclosed the figure on Microsoft's earnings call after the company reported stronger-than-expected results for its fiscal fourth quarter, including $76.4 billion in revenue, up 18% from a year earlier, and earnings of $3.65 per share, a 24% increase. The company reported $24.2 billion in capital spending for the recently completed quarter. More than half of that was directed toward long-lived assets expected to support monetization for 15 years or more, Hood said, while the remainder focused on servers — both CPUs and GPUs — to support growing AI workloads. Hood said the company is making the investments based on 'continued strong demand signals' for AI from Microsoft's customers. Keeping up with Amazon and Google Microsoft continues provide significant computing capacity to OpenAI for training and running the models that power OpenAI and other applications. The Redmond company is racing against cloud rivals Amazon and Google in building capacity to train and run AI models for a wide range of consumer and business applications. Google's capital spending for the second quarter of 2025 was $22.4 billion, according to numbers released as part of its earnings report last week. Amazon could see as much as $111 billion in capital expenditures this year, with the majority going toward technology and infrastructure, according to Morgan Stanley estimates. AI boosts cloud demand In a new disclosure, Microsoft said revenue from its Azure cloud platform surpassed $75 billion for the fiscal year, up 34% from the prior year — driven not only by AI demand but by 'growth across all workloads,' according to a statement from Microsoft CEO Satya Nadella in the company's earnings release. Later, speaking on Microsoft's earnings call, Nadella said the company's Copilot applications have surpassed 100 million monthly active users across commercial and consumer offerings. By comparison, Google last week said its Gemini app now has more than 450 million monthly active users, which reflects the search giant's larger reach on Chrome and Android devices. Overall, Microsoft now has more than 800 million monthly active users of AI-powered features across its products, Nadella said on the call. Capital spending and job cuts The record-setting capital investments coincide with significant workforce reductions at the company, totaling more than 15,000 cuts since May. In a recent press conference and interview with GeekWire, Microsoft President Brad Smith said that internal AI-driven efficiency gains were 'not a predominant factor' in the company's layoffs. However, he noted that rising capital expenditures have created pressure to reduce operating costs, which consist largely of employee headcount. In a memo to employees last week, Nadella acknowledged the 'uncertainty and seeming incongruence' of thriving financially while undergoing major layoffs. 'This is the enigma of success in an industry that has no franchise value,' he wrote. 'Progress isn't linear. It's dynamic, sometimes dissonant, and always demanding. But it's also a new opportunity for us to shape, lead through, and have greater impact than ever before.'
