A new cyber attack has once again brought Microsoft SharePoint into the headlines. This time, a zero-day vulnerability has targeted servers used by government offices, private companies, and universities across the world.
How Did the Zero Day Flaw Create Trouble
Microsoft has confirmed that a serious flaw was used to target on-premise SharePoint servers. This vulnerability was discovered recently and had no ready fix. That is why it is called a zero-day exploit.
The impact of this attack is not small. Tens of thousands of servers have already been affected. This is not just a regular issue but part of an active cyber attack campaign.
Who Got Affected
According to a report by the Washington Post, hackers gained access to US federal and state agencies, some European governments, a Brazilian university, and a major Asian telecom company. In some cases, they even hijacked public document storage so that officials could not access them.
Which Versions Were Affected
The main target of this attack is on-premise versions which are hosted inside an organization.
Microsoft has released a patch for SharePoint Subscription Edition and SharePoint 2019.
But for SharePoint 2016 the patch is still being developed.
This means users who have not updated their servers are still at high risk.
The good news is that SharePoint Online which is part of the Microsoft 365 cloud system is not affected by this issue.
What Does the Vulnerability Do
This flaw allows attackers to perform a spoofing attack. They can pretend to be a trusted source and enter the system. Once inside they can steal sensitive data, collect user passwords, and stay hidden using cryptographic keys.
One security expert said that if the hacker has already entered the system in the past 72 hours, even applying a patch later will not remove their access.
What Is Microsoft Doing
Microsoft said it is working on a patch for SharePoint 2016. Until then, they have shared detailed detection steps and safety measures on their official blog.
They have advised all system admins to watch for strange activity and follow the safety steps immediately.
Conclusion: Take Action on SharePoint Servers Now
If your organization is still using on-premise Microsoft SharePoint, it is time to act. Microsoft has made it clear that this is a serious threat.
Installing the patch is important, but just that is not enough. If the system is already hacked, then internal checks and monitoring are also needed.
This case is a clear reminder that keeping your tech systems updated and safe is very important. This is especially true for tools like Microsoft SharePoint that are used by large organizations for daily work.
ALSO READ: Instapaper Review: The Best Read-Later App After Pocket Shut Down
