AInvest Newsletter
Daily stocks & crypto headlines, free to your inbox
Microsoft alerts firms to server-software attack - WSJ
ByAinvest
Monday, Jul 21, 2025 8:38 pm ET1min read
Microsoft alerts firms to server-software attack - WSJ
Microsoft (MSFT.O) has issued a critical security alert, warning businesses and government agencies of active cyberattacks targeting their SharePoint server software. The vulnerabilities, which were previously unknown, allow attackers to perform spoofing over a network, posing a significant threat to data integrity and security.The alert, released on July 20, 2025, stated that the attacks are affecting on-premises SharePoint servers used within organizations but not SharePoint Online in Microsoft 365, which is cloud-based. The Federal Bureau of Investigation (FBI) confirmed its awareness of the attacks and is collaborating with federal and private-sector partners to assess the threat [1].
Microsoft has advised customers to apply immediate security updates and, if unable to do so, to disconnect their servers from the internet until updates are available. The company is working on updates for the 2016 and 2019 versions of SharePoint [2].
The Washington Post first reported the attacks, noting that unidentified actors exploited a flaw in recent days to target U.S. and international agencies. Tens of thousands of servers may be at risk [3].
Microsoft's announcement comes amidst a broader context of cybersecurity concerns and geopolitical tensions. Earlier this month, the company announced it would no longer involve engineers based in China in supporting its cloud-computing projects for the U.S. Defense Department, following a ProPublica investigation [2].
The ongoing cybersecurity crisis underscores the need for robust security measures and vigilant monitoring of vulnerabilities. As businesses and government agencies continue to rely on digital platforms for internal communications and data sharing, the risk of cyberattacks remains a critical concern.
References:
[1] https://www.reuters.com/sustainability/boards-policy-regulation/microsoft-alerts-businesses-governments-server-software-attack-2025-07-21/
[2] https://www.benzinga.com/markets/tech/25/07/46512850/microsoft-sounds-alarm-on-active-cyberattacks-targeting-sharepoint-thousands-of-us-government-servers-may-be-at-risk
[3] https://www.cnn.com/2025/07/21/business/microsoft-alert-attacks-sharepoint-servers-intl
Ainvest News articles are AI-generated using advanced large language model (LLM) technology designed to analyze and synthesize publicly available data and news. While AI tools assist in producing initial drafts and insights, all AI generated content published on Ainvest is subject to comprehensive human editorial review before publication. A designated human editor reviews, verifies, and approves each article for factual accuracy, coherence, and compliance with AInvest Fintech Inc’s editorial and disclosure standards.
Despite these review procedures, the information provided may still contain inaccuracies, incomplete data, or time sensitive references due to the inherent limitations of AI generated analysis and evolving changes. The material is provided strictly for informational and educational purposes and does not constitute personalized investment, legal, or financial advice. Readers should independently verify all facts, figures, and statements before making any decision based on this content.
AInvest Fintech Inc. its affiliates, and partners accept no liability or responsibility for any direct or consequential losses arising from reliance on this content. All articles and analyses are subject to revision, update, or removal without prior notice to maintain accuracy and integrity in our publications.
Comments
No comments yet