Microsoft Alert: Internal document sharing system has become the target of hackers, update it immediately..

Technology giant Microsoft has recently issued a major cyber alert. The company said that active attacks are being made on the servers of some government agencies and private companies. These attacks are targeting the software of SharePoint Server. This software is used for internal document sharing. Microsoft said that to avoid this threat, all users will have to install security updates immediately.

What is the matter?

According to a report by The Washington Post, Zero vulnerability has been used in these attacks. This means that the attackers have targeted a security flaw that no one knew about earlier. Taking advantage of this, they have tried to hack the systems of many American and international agencies.

Who was affected?

According to Microsoft, this attack has been done only on on-premises SharePoint Server. Meaning servers that run on the local network of an organization. Those who are using Microsoft 365 or SharePoint Online (Cloud-Based) service are safe from this threat.

What is a Spoofing Attack?

Microsoft said that through this flaw, an Authorized Attacker can spoof the identity of an organization or person. This means that the attacker can present himself as a trusted person or website and then send false information or incorrect data.

Microsoft and the FBI are both active

The FBI (Federal Bureau of Investigation) has also confirmed that they are aware of this threat and are working with Microsoft and other agencies on it. However, the FBI has not yet shared much information on this matter.

What steps has Microsoft taken?

A security update has been released for SharePoint Subscription Edition. Updates are being worked on for the 2016 and 2019 SharePoint versions.

If an organization is not able to apply security patches or anti-malware right now, Microsoft has advised that they disconnect their server from the Internet until the update arrives.

What should users do?

Users should update their SharePoint Server immediately. If you are on an older version, wait for the next update from Microsoft or disconnect the server from the Internet. Avoid clicking on any unknown links, emails, or websites.

Disclaimer: This content has been sourced and edited from TV9. While we have made modifications for clarity and presentation, the original content belongs to its respective authors and website. We do not claim ownership of the content.