Dozens of US government agencies and businesses are under attack following a unprecedented global hack on Microsoft servers.
Authorities are investigating after tens of thousands of SharePoint servers were compromised in the last few days, The Washington Post reports.
The platform is used to share and manage documents and remain at risk as Microsoft is yet to fix the flaw, per the outlet.
Users are being urged to take the servers offline or make changes to the SharePoint programs to protect themselves.
The attack is currently not affecting servers housed on the cloud, such as Microsoft 365. and only impacts those housed within an organization.
The breach is classed as a ‘zero day’ attack as it targets a previously unknown vulnerability.
‘We are seeing attempts to exploit thousands of SharePoint servers globally before a patch is available,’ Pete Renals, a senior manager with Palo Alto Networks’ Unit 42 told the Washington Post.
‘We have identified dozens of compromised organizations spanning both commercial and government sectors.’
The hack is being investigated by the US government in partnership with officials in Australia and Canada. It is not yet clear who is responsible.
The incident is the latest security breach for Microsoft, which was admonished for lapses in 2023 which allowed a Chinese hack of government emails, including those of former Commerce Secretary Gina Raimond.
This is a breaking news story, check back for updates.
