Skip to playerSkip to main content
Asianet News English
  • 2 months ago
In a major cybersecurity incident, Chinese state-sponsored hacker groups exploited a critical zero-day vulnerability in Microsoft’s SharePoint software to breach over 100 organizations worldwide, including the U.S. National Nuclear Security Administration (NNSA). Microsoft identified the hacking groups Linen Typhoon, Violet Typhoon, and Storm-2603 as behind the attacks. Despite Microsoft’s emergency patches, the threat remains high as hackers continue to exploit these SharePoint vulnerabilities. 
 

Category

🗞
News
Transcript
00:00Software giant Microsoft is at the center of a cybersecurity storm after China-linked hackers
00:11exploited flaws in SharePoint servers to target hundreds of organizations. While such cyber
00:18attacks are not new, the scale of the onslaught and the speed with which the hackers took advantage
00:24of freshly discovered vulnerabilities is fueling concern. That startup iSecurity warned on 19th
00:31of July of online attacks targeting SharePoint file sharing servers, with Microsoft quick to
00:36confirm the report and release patches to protect systems. According to Microsoft, the vulnerability
00:43allowed the hackers to retrieve credentials and then access SharePoint servers kept at users'
00:49facilities. But the company said that the cloud-based SharePoint software was safe from the problem.
01:01iSecurity determined that more than 400 computer systems were compromised by hackers
01:07during waves of attacks. Media reports indicated that the targets included government organizations in
01:13Europe, the Middle East and the US, among them the US Nuclear Weapons Agency. Cybersecurity
01:19firm Palo Alto Networks warned in a note. On-premises, SharePoint deployments, particularly
01:25within government, schools, healthcare and large enterprise companies, are at immediate risk.
01:31Microsoft has not disclosed the number of victims in the attack. SharePoint had more than 200 million
01:37active users as of 2020, according to the most recent figures available from Microsoft.
01:43Microsoft has attributed the cyber attacks to groups backed by China. The culprits are believed to include
01:55Chinese state actors known as Linen Typhoon and Violet Typhoon, along with a group called Storm 2603,
02:04which is considered with moderate confidence to be a threat actor based in China. The typhoon groups have
02:10been active for a decade or more and are known for intellectual property theft as well as espionage,
02:16according to Microsoft. Less was known about Storm 2603 and its motives. Microsoft said investigations
02:24into other actors also using these exploits are ongoing. The company urged users to patch SharePoint
02:31servers to avoid becoming hacking victims. According to cybersecurity specialist Damien Benkal,
02:41the assault on SharePoint servers is the latest in a series of sophisticated attacks
02:46carried out by state-sponsored groups against the Microsoft ecosystem. In 2021, attacks by a Chinese
02:53hacker group known as cell typhoon compromised tens of thousands of email servers using Microsoft
03:00Exchange software. Microsoft's success at making its software commonplace in offices and homes also make
03:07it a prime target for hackers out to steal money or information. Microsoft software can hold sensitive
03:14and valuable information. Shane Barney, head of information security at US-based Keeper Security,
03:20said it is not Microsoft that is being targeted, it is its customers. Head of Orange Cyber Defence
03:26Computer Emergency Response Team Roderick Lebeo said, targeting Microsoft programs is a means to an end
03:33and tomorrow it could be a software from another company. According to him, China is not the only nation
03:43backing hacker operations as countries around the world hone cyber capabilities. Nevertheless, China is
03:50repeatedly singled out by companies and governments hit by hacks. Western countries have accused hacker
03:56groups allegedly supported by China of conducting a global cyber espionage campaign against figures
04:02critical of Beijing, democratic institutions and companies in various sensitive sectors.
Be the first to comment
Add your comment

Recommended

0:48
Up next
Microsoft Reveals Cyberattack Linked to China, Shares Edge Up 0.4% Ahead of Q4 Earnings
Benzinga
2 months ago
0:47
Microsoft Breach Widens Sixfold In Days, Chinese State Hackers Reportedly To Blame
Benzinga
2 months ago
1:09
Massive cyber attack: US nuclear weapons agency breached | Oneindia News
Oneindia
5 years ago
0:48
Microsoft SharePoint Servers Hit By Major Cyberattack, Experts Warn of Global Risk
Benzinga
2 months ago
0:45
Chinese Hackers Breach Treasury, Targeting Sanctions And Intelligence Files
Benzinga
9 months ago
3:10
China Hacks US Treasury Dept.: Major Cyberattack Exposes Key Documents – Wake-Up Call for Security!
Oneindia
9 months ago
3:24
Hegseth RIPS Microsoft for Betrayal |Chinese Working on U.S Defense Systems, Microsoft Admits Breach
Oneindia
2 months ago
0:42
Pentagon Bars China-Based Engineers From Microsoft Cloud Work
TaiwanPlus News
2 months ago
20:44
Every Cyber Attack Facing America
WIRED
4 months ago
0:32
China Accused Of Cyber Hacking
Benzinga
4 years ago
0:59
Microsoft issues advice to help cyber attack issues
Bang Tech News
1 year ago
5:24
Exclusive: Pakistani hackers targeted India's power sector
Aaj Tak
4 years ago
1:22
2021 Worst Hacks
Tech-Motion
3 years ago
1:06
Microsoft Sounds Alarm On Active Cyberattacks Targeting SharePoint — Thousands Of US Government Servers May Be At Risk
Benzinga
2 months ago
1:36
Cybersecurity: Hackers threaten critical infrastructure
DW (English)
3 years ago
1:22
Report blames China as major backer of Australian hacking
ABC NEWS (Australia)
2 years ago
2:17
China Ramps Up Cyberattacks on Taiwanese Institutions
TaiwanPlus News
9 months ago
4:07
Report blames China as major backer behind Australian cyber attacks
ABC NEWS (Australia)
2 years ago
0:50
China-Linked Hackers Breach US Department Of Treasury
Benzinga
9 months ago
1:42
Firm falls victim to cyber attack after unwittingly hiring North Korean hacker
Bang Tech News
1 year ago
0:34
N. Korea, China greater threat than Russia in terms of cyber attacks on U.S.: Pompeo
Arirang News
5 years ago
0:58
Nvidia Denies China’s Claim Its AI Chips Have Built-In Kill Switches or Security Backdoors
Benzinga
2 months ago
0:42
Pakistani Hackers ने किया Cyber Attack!
Aaj Tak
5 months ago
0:43
Google in Advanced Talks to Acquire Cybersecurity Firm Wiz for $23 Billion, Potentially Making Its Largest Acquisition Ever
Benzinga
1 year ago
0:15
Aamir Liaquat 3rd Wife New Video With His Wife Syeda Dania Shah
DROID NATION
4 years ago