G7 Explores AI Access Deal With U.S. Amid Anthropic Restrictions 
ByteDance Eyes Iluvatar, Baidu AI Chips Amid China’s AI Push 
Trump Says Anthropic No Longer Seen as National Security Threat 
TD Bank Expands Employee Monitoring Software to Boost Productivity Amid Privacy Concerns 
SoftBank Shares Drop as OpenAI Losses and Rising Costs Spark Investor Concerns 
SK Hynix Shares Hit Record High After Shipping Next-Generation HBM4E AI Memory Samples 
Meta Seeks Legal Shield From Child-Harm Lawsuits Amid KOSA Talks 
Jio IPO Filing Nears as Reliance Targets $4 Billion Market Debut 
Frank Stronach Found Guilty of Sexual Assault and Indecent Assault in Ontario Court 
Qantas Nears Launch of World’s Longest Non-Stop Flights to London and New York 
UK Banks Report Surge in APP Fraud Losses as Pressure Mounts on Meta and Tech Platforms 
Apple Signals Product Price Hikes Amid Rising Memory Chip Costs 
Meta AI Strategy Faces Challenges as Zuckerberg Admits Mistakes in Internal Memo 
US Raises Concerns Over Possible ASML EUV Machine Transfer to China 
Google Gemini Co-Lead Noam Shazeer Leaves for OpenAI Amid AI Talent Race 
Microsoft Taps AWS to Support GitHub Amid AI Coding Boom 
Kingboard Holdings Shares Surge After HK$11.77 Billion Block Trade to Expand PCB and AI Supply Chain Business 
Microsoft (NASDAQ: MSFT) has issued an urgent security alert warning of active zero-day attacks targeting SharePoint servers used by government agencies and enterprises. The tech giant emphasized that the cloud-based SharePoint Online in Microsoft 365 remains unaffected. However, on-premise SharePoint servers, particularly SharePoint Subscription Edition, are at immediate risk due to a critical spoofing vulnerability.
The FBI confirmed awareness of the ongoing attacks and is coordinating with federal and private-sector partners, though it has not disclosed further details. According to The Washington Post, unidentified threat actors recently exploited this flaw to breach multiple U.S. and international organizations. Experts categorize this as a zero-day attack—a type of exploit targeting unknown software vulnerabilities—placing tens of thousands of servers at risk.
Microsoft explained the flaw allows an authorized attacker to conduct spoofing over a network, impersonating trusted sources to manipulate systems or gain unauthorized access. The company has released a security update for SharePoint Subscription Edition and strongly urges users to apply it immediately.
Security patches for SharePoint 2016 and 2019 are in development. Until they are available, Microsoft advises organizations unable to implement recommended malware protections to disconnect vulnerable servers from the internet to prevent potential breaches.
This incident highlights the growing threat to enterprise infrastructure and the importance of timely patch management. Organizations relying on SharePoint for internal collaboration should act swiftly to mitigate the risk. Cybersecurity experts recommend continuously monitoring systems, applying updates promptly, and maintaining layered defenses against evolving threats.
With active exploitation underway, the urgency for patching affected SharePoint servers cannot be overstated. Taking immediate steps can prevent data breaches and safeguard sensitive internal communications.
