Microsoft grapples with another high-profile security incident: Latest on the SharePoint attacks
The company has moved quickly to patch the vulnerabilities over the past few days, saying Tuesday that security updates are now available for all supported versions of its SharePoint Server software. It's urging customers to 'apply these updates immediately to ensure they are protected.'
'With the rapid adoption of these exploits, Microsoft assesses with high confidence that threat actors will continue to integrate them into their attacks against unpatched on-premises SharePoint systems,' the company warned in the post on its security blog.
The incident is the latest test of Microsoft's cybersecurity overhaul, known as the Secure Future Initiative. Launched amid a series of damaging nation-state attacks — and escalated after a critical Cyber Safety Review Board report — the program aims to improve the security of Microsoft's engineering systems and reduce the risk of breaches.
CEO Satya Nadella has declared security the company's top priority, and Microsoft has tied a portion of executive compensation to measurable progress. But the continued emergence of high-impact vulnerabilities — especially in legacy on-premises systems — underscores the scale of the challenge and the urgency of the reforms.
At the same time, Microsoft is expanding its security infrastructure products for customers in the cloud. On Tuesday, the company announced a public preview of the Microsoft Sentinel data lake, a new cloud platform designed to help organizations retain and analyze massive volumes of security data.
Microsoft says the data lake eliminates silos and enables deeper analytics that could help detect long-dwelling or 'low and slow' attacks. The release reflects the company's broader strategy to modernize threat detection and response, especially for customers shifting away from legacy on-premises systems.
The latest developments in the SharePoint vulnerability follow a weekend of emergency patching across government and corporate systems after reports of exploits emerged.
The company identified three China-linked groups behind the attacks: Linen Typhoon and Violet Typhoon, both established Chinese state actors, along with Storm-2603, another China-based threat actor.
Microsoft said its analysis suggests the exploitation attempts began as early as July 7, nearly two weeks before the vulnerabilities were publicly disclosed on July 19.
The fallout has been lessened in part by the fact that the vulnerability doesn't impact cloud-based Microsoft 365 systems.
Microsoft issued patches on July 8 to address related SharePoint vulnerabilities, but attackers later developed new exploits that bypassed those protections by leveraging additional flaws. However customers who diligently applied Microsoft's prior patches and followed its security guidance were still less likely to be impacted.
Among other steps, the company recommended that customers rotate their cryptographic keys, after detecting signs that hackers were using malicious scripts to retrieve MachineKey data, which could allow them to retain access to systems even after patches are applied. Read the Microsoft post for full technical details.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Android Authority
26 minutes ago
- Android Authority
Your Android phone can now control more of your PC, and here's how
Tushar Mehta / Android Authority TL;DR Microsoft is updating its Link to Windows app on Android, enabling you to access your PC more easily. The update allows you to view the PC's battery status, recent files, and clipboard from your Android devices. The update also allows you to lock your Windows PCs remotely using your phone. Microsoft's Phone Link is the closest (and most trustworthy) means to create an Apple-like continuity between your Android phone and a Windows PC. The app already allows you to view your phone's notifications, messages, and media on your PC, take calls, and share files between both devices. The Android device, however, gets limited functionality, which Microsoft may now be looking to change. On the Android side, Microsoft's Link to Windows app serves as the terminal for creating and managing the cross-device connectivity features. Since it is already popular, with over a billion downloads on the Play Store, Microsoft could improve its service by adding features that enable remote control of the PC from a mobile device. Microsoft recently announced a significant update to the Link to Windows app. The update introduces new features, including the ability to remotely lock your Windows PC from a connected phone, check vitals such as battery and Wi-Fi status, or cast your phone's screen without interacting with the PC app. These features were previously spotted in Windows' dev channels and are now being rolled out to more users through the broader Insider channels. Along with these improvements, the Link to Windows can now be used to send files directly, without relying separately on Android's share sheet. More excitingly, the Link to Windows app will now also allow you to view recent files and access your PC's clipboard on your phone. The Android app is also getting an updated interface, as seen below: Microsoft Microsoft isn't rolling these features out to the stable channels of Windows 11 just yet, and you must be using one of the Insider builds to enjoy them. Alternatively, you can sign up to be a Windows Insider. Additionally, you will need to sign up for the beta for Link to Windows on the Play Store by scrolling down on the app listing, such that you are running version 1.25071.155 of the app on your phone. Lastly, once you have completed these requirements, go to Windows Settings > Bluetooth & devices > Mobile devices > Manage devices on your PC, select your Android device, and enable the required toggles to access the new features on your phone.
Yahoo
4 hours ago
- Yahoo
Exclusive: Chinese electric carmaker Zeekr eyes pan-European growth despite tariffs, acting CEO says
China's electric vehicle (EV) company Zeekr is committed to a broad expansion throughout the EU despite tariffs slowing its pace, the company's top European executive has told Euronews. Lothar Schupert, the acting CEO of Zeekr Europe — which is the EV arm of Geely Holdings, one of the Chinese companies targeted by EU tariffs last year — told Euronews' Europe Today the brand was "committed" to Europe. Last October the EU slapped steep duties on China-made electric vehicles (EVs) to offset the effects of Chinese state subsidies, including tax reductions and preferential lending, which Brussels says unfairly undercut European competitors. Decrying the measure as a "naked act of protectionism", Beijing responded with probes into EU-made brandy, pork and dairy, which Brussels then denounced as unfair and unjustified. As expected, Thursday's one-day EU-China summit in Beijing failed to deliver progress on these open fronts. Talks on a potential minimum pricing arrangement in order to remove the tariffs have been underway since April. Asked whether such an arrangement would be acceptable to a company like Zeekr, Schupert simply said they were an advocate of "free trade." He explained that Zeekr had launched its car brand in Europe two years ago, beginning in the Nordic markets, before continuing in Belgium, Switzerland and several others. 'And we're in the middle of the expansion plans at the moment,' he said flagging the company's plans to grow further starting with Germany, the UK, 'and also going forward with France, Italy and Spain." 'At the moment we are preparing. So in the next twelve to twenty-four months, our plans are to be live,' he said. Schubert said 'of course we are opposing against the tariffs', adding they negatively impact consumers. 'The tariffs are hindering us moving in that speed forward since last year,' he explained. But he added that that company has 'done its homework', and is "very much convinced that our sustainable go-to-market approach is now prepared'. "So our commitment is to expand further. Our commitment is to deliver high-level premium products to our consumers in Europe. And independently from the tariffs, our expansion plans goes further." Pressed about EU concerns over the subsidies Beijing pumps into its domestic companies, he said the company had to "gain the trust of the consumers." 'And that is where our main work is on now, launching the markets, creating a brand experience and having a clear relationship to the consumers in Europe, convincing with the products and also attractive pricing and price value proposition where we can be successful.'
Yahoo
4 hours ago
- Yahoo
CK Hutchison ports deal deadline likely to be extended as US-China tensions weigh, sources say
By Clare Jim, Scott Murdoch and Davide Barbuscia HONG KONG (Reuters) -CK Hutchison's plan to sell most of its $22.8 billion ports business is unlikely to be finalised anytime soon, with political brinkmanship set to continue, and sources saying that a Sunday deadline for exclusive talks was likely to be extended. The Hong Kong conglomerate's plan to sell the business, which would include two ports along the strategically important Panama Canal, to a consortium led by BlackRock and Italian billionaire Gianluigi Aponte's family-run shipping company MSC, has become politicised amid an escalating China-U.S. trade war. Negotiations for the deal, which covers 43 ports in 23 countries, are on an exclusive basis between CK Hutchison, controlled by Hong Kong tycoon Li Ka-shing, and the consortium for 145 days until Sunday, as per the terms announced in March. The deal talks, however, are unlikely to collapse if the two parties do not ink a pact by Sunday, with three people close to the ports-to-telecoms conglomerate saying the parties could extend the deadline to continue exclusive negotiations. The first part of the deal - definitive documentation to sell two port operations near the Panama Canal - was also not signed by an April 2 deadline set in the sales announcement. The people declined to be named due to the sensitivity of the matter. BlackRock declined to comment. CK Hutchison and MSC Mediterranean Shipping Company, which CK Hutchison said in May was the main investor in the consortium, did not respond to requests for comment. U.S. President Donald Trump hailed the deal as "reclaiming" the Panama Canal, after his administration previously called for the removal of what it said was Chinese ownership of the ports near the canal. But in April, China's top market regulator said that it was paying close attention to CK Hutchison's planned sale and that parties to the deal should not try to avoid an antitrust review. Beijing's stance on the planned deal was made public after pro-China media launched a stinging criticism, saying China had significant national interests in the transaction and it would be a betrayal of the country. "I think at this moment it's not very optimistic that they can directly sell the ports to the consortium," said Jackson Chan, global fixed income senior manager at FSMOne Hong Kong, which has clients holding CK Hutchison bonds. "The market has already digested the news, even if it announces next week that it won't sell anymore, I don't think it'll be a shock because the market understands it wouldn't have a large impact on its operations." DEAL RISKS CK Hutchison shares, which jumped 33% the following two days after the deal was announced in early March, erased all of the gains by mid-April. But since then it regained lost ground along with the rise in the broader Hong Kong market index. The outlook for the deal has been clouded further in recent days, with a separate source telling Reuters that Chinese ports operator China Cosco Shipping Corp (COSCO) was also looking to join the consortium to buy the ports business. COSCO is requesting veto rights or equivalent power in the entity that will take over 43 ports from CK Hutchison, Bloomberg News reported this week, citing people familiar with the matter. COSCO did not respond to a request for comment. The existing consortium would likely allow COSCO into the deal, said Cathy Seifert, an analyst at CFRA Research. "The bigger risk to the deal being consummated, in my opinion, is likely the Trump administration, which is likely to block a deal that would include China," said the New Jersey-based analyst who tracks BlackRock. Ballingal Investment Advisors strategist David Blennerhassett, who publishes on the independent online research platform Smartkarma, said the addition of COSCO in the consortium was likely to enrage Trump. "Trump, who has a handful of issues already on his plate, would be incandescent," he said. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
