AXIOS July 22, 2025
Sam Sabin

A critical flaw in a major Microsoft document storage tool is hitting the organizations least able to defend themselves, security researchers and incident responders tell Axios.

Why it matters: Schools, hospitals and government agencies are “sitting ducks” as they determine whether their servers have even been affected, one security executive said.

  • Hackers are rushing into the breach, including groups linked to the Chinese government.

Driving the news: Microsoft warned over the weekend of “active attacks” targeting a “zero-day” vulnerability in its on-premise SharePoint server.

  • Today, the company said it has observed at least three China-based hacking groups, including two tied to the government, exploiting the vulnerability since as early as July 7. Charles Carmakal, CTO at Google’s...

Today's Sponsors

Venturous
ZeOmega

Today's Sponsor

Venturous

Continue Reading

 
Topics: Cybersecurity, Technology
Related Articles:
OT–IT Cybersecurity: Navigating The New Frontier Of Risk
STAT+: Hospitals and Epic demand better security for patient records
‘Complexity is where cyber risk tends to grow’
Researchers broke every AI defense they tested. Here are 7 questions to ask vendors.
Your Organization Isn’t Cyber Ready... It Just Thinks It Is

Share Article