A critical security flaw in Microsoft's SharePoint software

[noumoe]

A critical security flaw in Microsoft's SharePoint software has triggered widespread breaches, affecting government agencies, businesses, and institutions across multiple continents. Since attacks began around July 18, 2025, hackers have compromised at least 85 servers spanning 29 organizations, stealing sensitive data and establishing persistent access points.

The victim roster includes a concerning mix of high-value targets. U.S. federal agencies and multinational corporations have confirmed breaches, alongside government entities across Europe, Asia, and South America. Energy companies face potential disruptions to critical infrastructure, while educational institutions and telecommunications firms report unauthorized access. Security researchers describe the targeting as sophisticated, suggesting well-resourced attackers with broad strategic objectives rather than opportunistic criminals.

The impacts extend far beyond typical data breaches. Attackers aren't simply stealing information…

https://open.substack.com/pub/thedailyd ... Share=true

[noumoe]

[noumoe]

Microsoft has warned that Chinese state-sponsored hackers have breached its SharePoint software used by the US agency responsible for maintaining and modernizing the nation’s stockpile of nuclear weapons, according to a report.

The National Nuclear Security Administration, a semi-autonomous agency that operates under the auspices of the Department of Energy, was among the targets of a hack allegedly carried out by Chinese-backed cybercriminals, according to Bloomberg News.

A Dutch cybersecurity company estimates that around 400 government agencies in the US, Mauritius, Jordan, South Africa and the Netherlands were impacted by the hack, according to Bloomberg News.

The Dutch firm, Eye Security, previously estimated that just 60 entities were impacted.