Microsoft alerts businesses, governments to server software attack
The FBI on Sunday said it is aware of the attacks and is working closely with its federal and private-sector partners, but offered no other details.
In an alert issued on Saturday, Microsoft said the vulnerabilities apply only to SharePoint servers used within organisations. It said that SharePoint Online in Microsoft 365, which is in the cloud, was not hit by the attacks.
The Washington Post, which first reported the hacks, said unidentified actors in the past few days had exploited a flaw to launch an attack that targeted US and international agencies and businesses.
The hack is known as a 'zero day' attack because it targeted a previously unknown vulnerability, the newspaper said, quoting experts. Tens of thousands of servers were at risk.
Microsoft did not immediately respond to a request for comment.
BT in your inbox
Start and end each day with the latest news stories and analyses delivered straight to your inbox.
Sign Up
Sign Up
In the alert, Microsoft said that a vulnerability 'allows an authorised attacker to perform spoofing over a network.' It issued recommendations to stop the attackers from exploiting it.
In a spoofing attack, an actor can manipulate financial markets or agencies by hiding the actor's identity and appearing to be a trusted person, organisation or website.
Microsoft said on Sunday it issued a security update for SharePoint Subscription Edition, which it said customers should apply immediately.
It said it is working on updates to 2016 and 2019 versions of SharePoint. If customers cannot enable recommended malware protection, they should disconnect their servers from the internet until a security update is available, it said. REUTERS
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
CNA
5 hours ago
- CNA
Google commits $1 billion for AI training at US universities
SAN FRANCISCO :Alphabet's Google on Wednesday announced a three-year, $1 billion commitment to provide artificial intelligence training and tools to U.S. higher education institutions and nonprofits. More than 100 universities have signed on to the initiative so far, including some of the nation's largest public university systems such as Texas A&M and the University of North Carolina. Participating schools may receive cash funding and resources, such as cloud computing credits towards AI training for students as well as research on AI-related topics. The billion-dollar figure also includes the value of paid AI tools, such as an advanced version of the Gemini chatbot, which Google will give to college students for free. Google hopes to expand the program to every accredited nonprofit college in the U.S. and is discussing similar plans in other countries, Senior Vice President James Manyika said in an interview. He declined to specify how much Google is earmarking in direct funds to external institutions relative to footing its own cloud and subscription bills. The announcement comes as rivals like OpenAI, Anthropic and Amazon have made similar pushes around AI in education as the technology pervades society. Microsoft in July pledged $4 billion to bolster AI in education globally. By evangelizing their products to students, tech firms further stand to win business deals once those users enter the workforce. A growing body of research has mapped concerns around AI's role in education, from enabling cheating to eroding critical thinking, prompting some schools to consider bans. Manyika said Google had not faced resistance from administrators since it began to plot its education initiative earlier this year, but "many more questions" about AI-related concerns remain. "We're hoping to learn together with these institutions about how best to use these tools," he said, adding that the insights could help shape future product decisions.
CNA
11 hours ago
- CNA
OpenAI's long-awaited GPT-5 model nears release
SAN FRANCISCO :OpenAI's GPT-5, the latest installment of the AI technology that powered the ChatGPT juggernaut in 2022, is set for an imminent release, and users will scrutinize if the step up from GPT-4 is on par with the research lab's previous improvements. Two early testers of the new model told Reuters they have been impressed with its ability to code and solve science and math problems, but they believe the leap from GPT-4 to GPT-5 is not as large as the one from GPT-3 to GPT-4. The testers, who have signed non-disclosure agreements, declined to be named for this story. OpenAI declined to comment for this story. GPT-4's leap was based on more compute power and data, and the company was hoping that 'scaling up' in a similar way would consistently lead to improved AI models. But OpenAI, which is backed by Microsoft and is currently valued at $300 billion, ran into issues scaling up. One problem was the data wall the company ran into, and OpenAI's former chief scientist Ilya Sutskever said last year that while processing power was growing, the amount of data was not. He was referring to the fact that large language models are trained on massive datasets that scrape the entire internet, and AI labs have no other options for large troves of human-generated textual data. Apart from the lack of data, another problem was that 'training runs' for large models are more likely to have hardware-induced failures given how complicated the system is, and researchers may not know the eventual performance of the models until the end of the run, which can take months. OpenAI has not said when GPT-5 will be released, but the industry expects it to be any day now, according to media reports. Boris Power, head of Applied Research at OpenAI, said in an X post on Monday: "Excited to see how the public receives GPT-5." 'OpenAI made such a great leap from GPT-3 to GPT-4, that ever since then, there has been an enormous amount of anticipation over GPT-5,' said Navin Chaddha, managing partner at venture capital fund Mayfield, who invests in AI companies but is not an OpenAI investor. 'The hope is that GPT-5 will unlock AI applications that move beyond chat into fully autonomous task execution." 'TEST-TIME COMPUTE' Nearly three years ago, ChatGPT introduced the world to generative AI, dazzling users with its ability to write humanlike prose and poetry, quickly becoming one of the fastest growing apps ever. In March 2023, OpenAI followed up ChatGPT with the release of GPT-4, a large language model that made huge leaps forward in intelligence. While GPT-3.5, an earlier version of the model, received a bar exam score in the bottom 10 per cent, GPT-4 passed the simulated bar exam in the top 10 per cent. GPT-4 then became the model to beat and the world came to terms with the fact that AI models could outperform humans in many tasks. Soon, other companies were catching on. The same year, Alphabet's Google and Anthropic - which is backed by Amazon and Google - released competitive models to GPT-4. Within a year, open-source models on par with GPT-4 such as Meta Platforms' Llama 3 models were released. Along with training large models, OpenAI has now invested in another route, called 'test-time compute,' which channels more processing power to solve challenging tasks such as math or complex operations that demand human-like reasoning and decision-making. The company's CEO Sam Altman said earlier this year that GPT-5 would combine both test-time compute and its large models. He also said that OpenAI's model and product offerings had become "complicated."
CNA
19 hours ago
- CNA
OpenAI eyes $500 billion valuation in potential employee share sale, source says
ChatGPT maker OpenAI is in early talks for a potential secondary stock sale that would allow current and former employees to sell shares, valuing the company at around $500 billion, a source familiar with the matter told Reuters on Tuesday. Bloomberg was first to report the news. The Microsoft-backed company aims to raise billions through the sale, with existing investors, including Thrive Capital, expressing interest in buying some of the employee shares, the source said. Thrive Capital declined to comment on a Reuters request. Separately, OpenAI is still in the process of raising $40 billion in a new funding round led by SoftBank Group at a $300 billion valuation to advance AI research, expand computational infrastructure and enhance its tools.
