Microsoft(US:MSFT) 财联社·2025-07-21 14:30Core Viewpoint - Microsoft has issued an urgent announcement regarding active attacks on its SharePoint server software, which is widely used for internal document sharing by government agencies and enterprises, urging clients to apply security updates immediately [1][2]. Group 1: Security Vulnerability and Attacks - A serious security vulnerability in Microsoft's SharePoint server software has been reported, leading to ongoing attacks by hackers, affecting various sectors including U.S. federal and state government agencies, universities, energy companies, and an Asian telecom company [1]. - The attacks are classified as "zero day attacks," exploiting previously unknown vulnerabilities, allowing attackers to impersonate trusted entities and potentially manipulate financial markets or institutions [2]. - Over 10,000 companies with SharePoint servers are estimated to be at risk, with the highest number of affected users in the U.S., followed by the Netherlands, the UK, and Canada [2]. Group 2: Response and Coordination - The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has acknowledged the vulnerability, stating that hackers can access file systems and internal configurations, as well as execute code on networks [4]. - The FBI is aware of the attacks and is collaborating closely with federal and private sector partners, although no further details have been provided [4]. - Microsoft is coordinating with CISA, the Department of Defense Cyber Defense Command, and major global cybersecurity partners to address the situation [4]. Group 3: Security Culture Concerns - The Cyber Safety Review Board (CSRB) has previously noted deficiencies in Microsoft's security culture, particularly after a 2023 incident involving the hacking of Microsoft Exchange Online, which resulted in data breaches affecting 22 organizations and hundreds of individuals [4].