Techly NewsGet the app

Get the latest tech news

'Tens of Thousands' of SharePoint Servers at Risk. Microsoft Issues No Patch


"Anybody who's got a hosted SharePoint server has got a problem," the senior VP of cybersecurity firm CrowdStrike told the Washington Post. "It's a significant vulnerability." And it's led to a new "global attack on government agencies and businesses" in the last few days, according to the article...

Microsoft issued an alert to customers but declined to comment further... "We are seeing attempts to exploit thousands of SharePoint servers globally before a patch is available," said Pete Renals, a senior manager with Palo Alto Networks' Unit 42. With access to these servers, which often connect to Outlook email, Teams and other core services, a breach can lead to theft of sensitive data as well as password harvesting, Netherlands-based research company Eye Security noted. "So pushing out a patch on Monday or Tuesday doesn't help anybody who's been compromised in the past 72 hours," said one researcher, who spoke on the condition of anonymity because a federal investigation is ongoing.

Get the Android app

Or read this on Slashdot

Read more on:

Photo of Microsoft

Microsoft

Photo of risk

risk

Photo of Thousands

Thousands

Related news:

News photo

Microsoft SharePoint zero-day exploited in RCE attacks, no patch available

News photo

Microsoft quietly removes ability to purchase movies and TV shows on Xbox and the Microsoft Store

News photo

Microsoft SharePoint zero-day exploited in RCE attacks, no patch available

« Why not to use iframes for embedded dashboards
Show HN: X11 desktop widget that shows location of your network peers on a map »