Ad News Live
July 21, 2025
SharePoint Vulnerability: Microsoft says hackers are actively targeting SharePoint.
Researchers warn the campaign could hit organizations worldwide.
CISA says the flaw lets attackers in without logging in. They can see all SharePoint content. They can run code across the network.
CISA says investigators are still gauging the full reach and damage. The agency warns the threat could put many organizations at risk.
Microsoft rolled out emergency fixes late Sunday for two supported SharePoint builds. SharePoint Server 2016 remains exposed. Microsoft says a patch is in progress.
Researchers at Palo Alto Networks say the hack likely hit thousands of organizations worldwide.
They stress the exploits are real. They are already being used in the wild. The threat is serious.
CNBC has asked Microsoft for more details and comments. In a Saturday alert, Microsoft said the attack affects only on-premises SharePoint servers.
Cloud services such as Microsoft 365 are not impacted. SharePoint is widely used worldwide to store and collaborate on documents.
Researchers at Eye Security, a European cybersecurity firm, say the flaw is highly dangerous. It allows hackers to impersonate users or services even after the SharePoint server is patched.
READ ALSO
Google Pixel 10 Release Date & Aggressive Pricing!
Eye Security claims it was the first to detect this vulnerability. SharePoint servers often link to other Microsoft tools like Outlook and Teams.
A breach here can quickly lead to stolen data and harvested passwords, the researchers warn. Alaska Airlines temporarily suspended ground operations on Sunday due to an IT outage.
The disruption lasted for about three hours. The airline said the ground stop was lifted around 2 a.m. EST. It is not yet known if this outage is connected to the SharePoint attack.
Follow Us
AD News Live
