Microsoft(US:MSFT) Guan Cha Zhe Wang·2025-07-22 01:27Core Insights - A significant security vulnerability in Microsoft's SharePoint server software has led to global cyberattacks targeting U.S. government agencies, universities, energy companies, and an Asian telecom company [1][2] - The attacks are classified as "zero-day attacks," exploiting previously unknown vulnerabilities, allowing attackers to impersonate trusted entities and potentially manipulate financial markets [1] - Microsoft has released a security patch for one version of the software but acknowledges that two other versions remain vulnerable and are still under development for patches [2] Group 1: Attack Details - Thousands of SharePoint servers are at risk, with evidence of attempts to exploit the vulnerability before the patch was released [2] - At least two U.S. federal agencies have reported server breaches, with one state government official noting that attackers compromised a public government document repository [3] - The Cybersecurity and Infrastructure Security Agency (CISA) received reports of the vulnerability and immediately contacted Microsoft for coordination [3] Group 2: Expert Opinions - Cybersecurity experts have labeled the vulnerability as severe, indicating that all users hosting SharePoint servers are at risk [2] - Concerns have been raised that even after applying patches, hackers may retain access due to previously obtained keys [2] - The White House's Cyber Safety Review Board has previously criticized Microsoft's security culture following past incidents, indicating ongoing concerns about the company's cybersecurity practices [3]