AMD Shares Slide Despite Earnings Beat as Cautious Revenue Outlook Weighs on Stock 
Amazon Stock Rebounds After Earnings as $200B Capex Plan Sparks AI Spending Debate 
Nvidia CEO Jensen Huang Says AI Investment Boom Is Just Beginning as NVDA Shares Surge 
Nvidia Confirms Major OpenAI Investment Amid AI Funding Race 
Australian Scandium Project Backed by Richard Friedland Poised to Support U.S. Critical Minerals Stockpile 
Nintendo Shares Slide After Earnings Miss Raises Switch 2 Margin Concerns 
Sony Q3 Profit Jumps on Gaming and Image Sensors, Full-Year Outlook Raised 
SpaceX Pushes for Early Stock Index Inclusion Ahead of Potential Record-Breaking IPO 
Tencent Shares Slide After WeChat Restricts YuanBao AI Promotional Links 
TSMC Eyes 3nm Chip Production in Japan with $17 Billion Kumamoto Investment 
CK Hutchison Launches Arbitration After Panama Court Revokes Canal Port Licences 
Alphabet’s Massive AI Spending Surge Signals Confidence in Google’s Growth Engine 
SoftBank Shares Slide After Arm Earnings Miss Fuels Tech Stock Sell-Off 
Anthropic Eyes $350 Billion Valuation as AI Funding and Share Sale Accelerate 
Ford and Geely Explore Strategic Manufacturing Partnership in Europe 
Missouri Judge Dismisses Lawsuit Challenging Starbucks’ Diversity and Inclusion Policies 
Nasdaq Proposes Fast-Track Rule to Accelerate Index Inclusion for Major New Listings 
Microsoft (NASDAQ: MSFT) has issued an urgent security alert warning of active zero-day attacks targeting SharePoint servers used by government agencies and enterprises. The tech giant emphasized that the cloud-based SharePoint Online in Microsoft 365 remains unaffected. However, on-premise SharePoint servers, particularly SharePoint Subscription Edition, are at immediate risk due to a critical spoofing vulnerability.
The FBI confirmed awareness of the ongoing attacks and is coordinating with federal and private-sector partners, though it has not disclosed further details. According to The Washington Post, unidentified threat actors recently exploited this flaw to breach multiple U.S. and international organizations. Experts categorize this as a zero-day attack—a type of exploit targeting unknown software vulnerabilities—placing tens of thousands of servers at risk.
Microsoft explained the flaw allows an authorized attacker to conduct spoofing over a network, impersonating trusted sources to manipulate systems or gain unauthorized access. The company has released a security update for SharePoint Subscription Edition and strongly urges users to apply it immediately.
Security patches for SharePoint 2016 and 2019 are in development. Until they are available, Microsoft advises organizations unable to implement recommended malware protections to disconnect vulnerable servers from the internet to prevent potential breaches.
This incident highlights the growing threat to enterprise infrastructure and the importance of timely patch management. Organizations relying on SharePoint for internal collaboration should act swiftly to mitigate the risk. Cybersecurity experts recommend continuously monitoring systems, applying updates promptly, and maintaining layered defenses against evolving threats.
With active exploitation underway, the urgency for patching affected SharePoint servers cannot be overstated. Taking immediate steps can prevent data breaches and safeguard sensitive internal communications.
