Microsoft hit with SharePoint attack — one version still vulnerable

Microsoft Warning against the “active attacks” targeting SharePoint Cooperation programs, with reference to security researchers that organizations all over the world will be affected by violation.

Cyber Security Agency and infrastructure He said On Sunday, in the issuance of the fact that weakness provides indisputable access to regulations and full access to the SharePoint content, which allows bad actors to implement programming instructions across the network.

Cisa said that although the attack and the impact of the attack continued, the agency warned that it was “a threat to organizations.”

Microsoft released late Sunday repairs to customers to apply for two copies of the SharePoint program. The 2016 version is still the last at risk and the company He said It works to develop a correction.

Researchers in Palo Alto networks He most likely said thousands of organizations in the world.

“The exploits are real, in the cover and pose a serious threat,” they added.

A Microsoft spokesman declined to comment on the accident that was shared in the company’s blog publication.

in alert On Saturday, Microsoft said that the attack applies only to local SharePoint servers, and not those in the cloud like Microsoft 365. The SharePoint program is commonly used by companies and international institutions to store and cooperate in documents.

Weakness is particularly concerned because it allows the infiltrators to impersonate a person or services even after the SharePoint server corrected, According to For researchers at Cyber Security Security Company, which she said had set for the first time the defect.

Shipin -safety researchers said that SharePoint servers often connect to other Microsoft services such as Outlook and the difference, which means that such a violation can lead to “the stealing data quickly and the password.

“Once he enters, they outperform sensitive data, publish continuous background devices, and steal encryption keys,” Michael Sikorski, head of the threat intelligence in the Palu Alto unit. “The attackers have benefited from this weakness to enter the regimes and are already establishing their foothold.”

Separately, Alaska Airlines She briefly stopped its ground operations for about three hours on Sunday due to the interruption of IT. Raised Stop At approximately 2 am EST, the carrier said in a statement.

It was not clear whether the power outage was linked to the SharePoint attack.