Microsoft (NASDAQ: MSFT) has issued an urgent security alert warning of active zero-day attacks targeting SharePoint servers used by government agencies and enterprises. The tech giant emphasized that the cloud-based SharePoint Online in Microsoft 365 remains unaffected. However, on-premise SharePoint servers, particularly SharePoint Subscription Edition, are at immediate risk due to a critical spoofing vulnerability.
The FBI confirmed awareness of the ongoing attacks and is coordinating with federal and private-sector partners, though it has not disclosed further details. According to The Washington Post, unidentified threat actors recently exploited this flaw to breach multiple U.S. and international organizations. Experts categorize this as a zero-day attack—a type of exploit targeting unknown software vulnerabilities—placing tens of thousands of servers at risk.
Microsoft explained the flaw allows an authorized attacker to conduct spoofing over a network, impersonating trusted sources to manipulate systems or gain unauthorized access. The company has released a security update for SharePoint Subscription Edition and strongly urges users to apply it immediately.
Security patches for SharePoint 2016 and 2019 are in development. Until they are available, Microsoft advises organizations unable to implement recommended malware protections to disconnect vulnerable servers from the internet to prevent potential breaches.
This incident highlights the growing threat to enterprise infrastructure and the importance of timely patch management. Organizations relying on SharePoint for internal collaboration should act swiftly to mitigate the risk. Cybersecurity experts recommend continuously monitoring systems, applying updates promptly, and maintaining layered defenses against evolving threats.
With active exploitation underway, the urgency for patching affected SharePoint servers cannot be overstated. Taking immediate steps can prevent data breaches and safeguard sensitive internal communications.


Wolfspeed Sues Navitas Over GaN and SiC Patent Infringement
Samsung Chairman Lee Jae-yong Expected to Meet Nvidia CEO Jensen Huang on AI and Chip Partnership
Morgan Stanley Says China’s Reusable Rocket Progress Poses Long-Term Challenge to SpaceX
Muji Owner Ryohin Keikaku Stock Soars After Raising Full-Year Earnings Forecast
Australia Flags Child Safety Gaps at Apple, Meta, Google Over Online Sexual Extortion
SK Hynix Shares Drop After Strong Nasdaq Debut Despite $26 Billion ADR Listing
Elon Musk Says Anthropic Leads AI Race as Claude Models Challenge OpenAI
Samsung to Launch First Yongin Chip Plant by 2029 as South Korea Speeds Up Semiconductor Hub
Yaskawa Electric Shares Slide as Weak Profit Overshadows Strong AI Demand
Mastercard Explores Sale of Majority Stake in UK Payments Firm Vocalink: Report
Kitron Q2 Revenue Beats Estimates as Defense Demand Lifts Growth
TSMC Q2 Revenue Surges 36% as AI Chip Demand Powers Growth Ahead of Earnings
Fast Retailing Raises Full-Year Forecast After Uniqlo Owner Beats Q3 Profit Estimates
DOJ Grand Jury Investigates UAW President Shawn Fain Ahead of Union Election
Stellantis Q2 Vehicle Shipments Rise 10% as North America Drives Growth
SK Hynix Soars 13% in Nasdaq Debut After Record $26.5 Billion IPO 



