Microsoft: Cyber attack on Microsoft server, more than 100 government organizations became victims..

Cases of cyber attacks are constantly being reported all over the world. Recently, a big Cyberespionage Operation has been disclosed. In this, Microsoft's SharePoint server was targeted. About 100 different organizations have fallen victim to this operation so far.

This cyber attack was so dangerous that Microsoft had to issue an alert in the past days. It was said that active attacks are going on on their SharePoint server, and users will have to install safety updates immediately.

This attack was done by targeting Microsoft's server software named SharePoint. This server is used to share documents of the government and big companies.

This attack is being called Zero-Day Exploit. This means that hackers have tried to enter the server by taking advantage of a flaw in Microsoft.

Who disclosed it?
Netherlands' cyber security firm Eye Security first disclosed this attack. Their main hacker, Vaisha Bernard, said that when they scanned the internet, about 100 victim organizations were found. He did this scan in collaboration with ShadowServer Foundation.

Who was affected the most?

According to the data of Shodan internet search engine, more than 8,000 SharePoint servers are at risk. These servers include big industry companies, banks, audit companies, healthcare organizations, some government agencies of America, and international government organizations.

Hackers have created backdoors in the system, through which they can enter that system again and again. This espionage not only leads to data theft, but it can also open the way for bigger attacks in the future.

Action of Microsoft and the government

Microsoft said that they have released security updates and all users have been asked to install them immediately. FBI and UK's National Cyber Security Agency are also monitoring this. It is not clear yet which hacker group or country is responsible for this attack.

What should users do now?

According to cyber experts, adopt Assume Breach Approach i.e. assume that the system has been hacked. Just installing patches is not enough, but security checking of all servers has to be done. Get both backdoors and malware checked. Analyze the logs to see if there is any suspicious activity.

Disclaimer: This content has been sourced and edited from TV9. While we have made modifications for clarity and presentation, the original content belongs to its respective authors and website. We do not claim ownership of the content.