Microsoft says some SharePoint server hackers now using ransomware
In the post, citing 'expanded analysis and threat intelligence,' Microsoft said a group it dubs 'Storm-2603' is using the vulnerability to seed the ransomware, which typically works by paralyzing victims' networks until a digital currency payment is made.
The disclosure marks a potential escalation in the campaign, which has already hit at least 400 victims, according to Netherlands-based cybersecurity firm Eye Security. Unlike typical state-backed hacker campaigns, which are aimed at stealing data, ransomware can cause widespread disruption depending on where it lands.
The figure of 400 victims represents a sharp rise from the 100 organizations cataloged over the weekend. Eye Security says the figure is likely an undercount.
'There are many more, because not all attack vectors have left artifacts that we could scan for,' said Vaisha Bernard, the chief hacker for Eye Security, which was among the first organizations to flag the breaches.
The details of most of the victim organizations have not yet been fully disclosed, but on Wednesday a representative for the National Institutes of Health confirmed that one of the organization's servers had been compromised.
'Additional servers were isolated as a precaution,' he said. The news of the compromise was first reported by the Washington Post.
Other outlets said the hacking campaign had breached an even broader range of US agencies. NextGov, citing multiple people familiar with the matter, reported the Department of Homeland Security had been hit, along with more than five to 12 other agencies.
Politico, which cited two US officials, said multiple agencies were believed to have been breached.
DHS' cyberdefense arm, CISA, did not immediately return a message seeking comment on the reports. Microsoft did not immediately return a message seeking further details on the ransomware angle of the hacking or the reported government victims.
The spy campaign began after Microsoft failed to fully patch a security hole in its SharePoint server software, kicking off a scramble to fix the vulnerability when it was discovered.
Microsoft and its tech rival, Google-owner Alphabet, have both said Chinese hackers are among those taking advantage of the flaw. Beijing has denied the claim.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Arab News
19 hours ago
- Arab News
Sweden calls on EU to suspend trade pact with Israel: PM
STOCKHOLM: Sweden on Thursday called on the EU to suspend the trade part of its association agreement with Israel over its conduct of the war in Gaza. 'The situation in Gaza is absolutely appalling, and Israel is failing to fulfil its most basic obligations and agreements on emergency aid,' Prime Minister Ulf Kristersson said in a post to X. 'Sweden therefore demands that the EU freeze the trade section of the association agreement as soon as possible,' Kristersson said, calling on the Israeli government to allow 'unhindered humanitarian aid into Gaza.' The EU's association agreement with Israel is a framework for trade and political relations. The bloc is Israel's largest trading partner, accounting for nearly a third of Israel's global trade, according to EU data. Kristersson's statement comes two days after a similar stance was taken by the Netherlands. Dutch Foreign Minister Caspar Veldkamp said that the Netherlands would push to suspend the trade element of the EU-Israel Association Agreement if Israel fails to meet its humanitarian obligations. The Israel-Hamas war in Gaza has deeply divided EU members. Several member states, including Germany, insist on Israel's right to defend itself within the bounds of international law, while others, such as Spain, denounce a 'genocide' against Gaza's Palestinians. An EU report, presented to the 27 member states at the end of June, found that Israel may have fallen short of its human rights obligations under is EU cooperation agreement.
Al Arabiya
19 hours ago
- Al Arabiya
Sweden calls on EU to suspend trade pact with Israel: PM
Sweden on Thursday called on the EU to suspend the trade part of its association agreement with Israel over its conduct of the war in Gaza. 'The situation in Gaza is absolutely appalling, and Israel is failing to fulfil its most basic obligations and agreements on emergency aid,' Prime Minister Ulf Kristersson said in a post to X. 'Sweden therefore demands that the EU freeze the trade section of the association agreement as soon as possible,' Kristersson said, calling on the Israeli government to allow 'unhindered humanitarian aid into Gaza.' The EU's association agreement with Israel is a framework for trade and political relations. The bloc is Israel's largest trading partner, accounting for nearly a third of Israel's global trade, according to EU data. Kristersson's statement comes two days after a similar stance was taken by the Netherlands. Dutch Foreign Minister Caspar Veldkamp said that the Netherlands would push to suspend the trade element of the EU-Israel Association Agreement if Israel fails to meet its humanitarian obligations. The Israel-Hamas war in Gaza has deeply divided EU members. Several member states, including Germany, insist on Israel's right to defend itself within the bounds of international law, while others, such as Spain, denounce a 'genocide' against Gaza's Palestinians. An EU report, presented to the 27 member states at the end of June, found that Israel may have fallen short of its human rights obligations under is EU cooperation agreement.
Al Arabiya
a day ago
- Al Arabiya
Microsoft's annual cloud revenue hits $75b, profit beats expectations
Microsoft said Wednesday that annual revenue for its flagship Azure cloud computing platform has surpassed 75 billion up 34 percent from a year earlier. The Azure cloud business has been a centerpiece of Microsoft's efforts to shift its focus to artificial intelligence, but until Wednesday the company hadn't disclosed how much money it makes. The revelation came in the software giant's end-of-year earnings report. The company also said its fiscal fourth-quarter profit was 34.3 billion, or 3.65 per share, beating analyst expectations for 3.37 per share. It posted revenue of 76.4 billion in the April–June period, up 18 percent from last year. Analysts polled by FactSet Research had been looking for revenue of 73.86 billion. Microsoft launched Azure more than a decade ago, but the product has increasingly become intertwined with its AI ambitions as the company looks to sell its AI chatbot and other tools to big business customers that are also reliant on its core online services. But building the infrastructure to power cloud and AI technology is expensive, and Microsoft has looked for savings elsewhere. It has announced layoffs of about 15000 workers this year, even as its profits have soared. Microsoft CEO Satya Nadella told employees last week the layoffs were weighing heavily on him, but also positioned them as an opportunity to reimagine the company's mission for an AI era. Still, the overall workforce numbers haven't changed. The company said it employed 228000 full-time employees as of June 30, the exact same amount it reported a year ago, though slightly more of them are now US-based and fewer of them are in product support roles or consulting services. Promises of a leaner approach have been welcomed on Wall Street, especially as Microsoft and other tech giants are trying to justify huge amounts of capital spending to pay for the data centers, chips, and other components required to power AI technology. Google said after releasing its earnings last week it would raise its budget for capital expenditures by an additional 10 billion to 85 billion. Microsoft is expected to outline similar guidance soon. Microsoft didn't disclose Wednesday to what extent sweeping US tariffs are affecting its revenue, but its annual report lists tariffs among a number of risks the company faces. Increased geopolitical instabilities and changing US administration priorities create an unpredictable trade landscape, the company said. It also said the volatility of US tariffs has triggered economic uncertainty and could impact cloud and devices supply chain cost competitiveness.
