Microsoft SharePoint Flaw Exploited by China Hackers

Multiple hacking groups, including state-sponsored actors from China, have exploited a Microsoft SharePoint flaw in outdated, on-premises versions of the collaboration platform. The vulnerability emerged after Microsoft attempted to patch a known issue in legacy systems but failed to secure it fully. Cybersecurity researchers observed a rise in intrusions following the flawed update.

Attackers are zeroing in on organizations still relying on unsupported versions of SharePoint, taking advantage of weak defenses and outdated software. As Microsoft shifts its focus to newer, cloud-based solutions, older systems remain exposed. This has turned the Microsoft SharePoint flaw exploited by multiple groups into a growing concern for IT teams managing aging infrastructure.

The ongoing attacks underline the risks of using end-of-life software with incomplete security updates. Enterprises running older SharePoint installations may need to accelerate migration plans or invest in additional protective measures.

Read the full report for more details:
https://www.wired.com/story/microsoft-sharepoint-hack-china-end-of-life-updates/