Nvidia Appoints Former Google Executive Alison Wagonfeld as First Chief Marketing Officer 
Walmart International CEO Kathryn McLay to Step Down After Two and a Half Years 
China Considers New Rules to Limit Purchases of Foreign AI Chips Amid Growing Demand 
BESI Reports Strong Q4-25 Orders Surge Driven by Data Center and Hybrid Bonding Demand 
Chevron Set to Expand Venezuela Operations as U.S. Signals Shift on Oil Sanctions 
China’s AI Sector Pushes to Close U.S. Tech Gap Amid Chipmaking Challenges 
Zhipu AI Launches GLM-Image Model Trained on Huawei Chips, Boosting China’s AI Self-Reliance Drive 
xAI Restricts Grok Image Editing After Sexualized AI Images Trigger Global Scrutiny 
Starlink Internet Remains Active in Iran Despite Nationwide Blackout 
Saks Global Files for Bankruptcy Protection Amid Mounting Luxury Retail Pressures 
One Percent Rule Checklist For Safer Forex Trading Risk 
AFT Leaves X Over AI-Generated Images of Minors 
Publishers Seek to Join Lawsuit Against Google Over Alleged AI Copyright Infringement 
SK Hynix to Invest $13 Billion in Advanced Chip Packaging Plant as AI Memory Demand Surges 
Taiwan Issues Arrest Warrant for OnePlus CEO Over Alleged Illegal Recruitment Activities 
Microsoft Strikes Landmark Soil Carbon Credit Deal With Indigo Carbon to Boost Carbon-Negative Goal 
Microsoft (NASDAQ: MSFT) has issued an urgent security alert warning of active zero-day attacks targeting SharePoint servers used by government agencies and enterprises. The tech giant emphasized that the cloud-based SharePoint Online in Microsoft 365 remains unaffected. However, on-premise SharePoint servers, particularly SharePoint Subscription Edition, are at immediate risk due to a critical spoofing vulnerability.
The FBI confirmed awareness of the ongoing attacks and is coordinating with federal and private-sector partners, though it has not disclosed further details. According to The Washington Post, unidentified threat actors recently exploited this flaw to breach multiple U.S. and international organizations. Experts categorize this as a zero-day attack—a type of exploit targeting unknown software vulnerabilities—placing tens of thousands of servers at risk.
Microsoft explained the flaw allows an authorized attacker to conduct spoofing over a network, impersonating trusted sources to manipulate systems or gain unauthorized access. The company has released a security update for SharePoint Subscription Edition and strongly urges users to apply it immediately.
Security patches for SharePoint 2016 and 2019 are in development. Until they are available, Microsoft advises organizations unable to implement recommended malware protections to disconnect vulnerable servers from the internet to prevent potential breaches.
This incident highlights the growing threat to enterprise infrastructure and the importance of timely patch management. Organizations relying on SharePoint for internal collaboration should act swiftly to mitigate the risk. Cybersecurity experts recommend continuously monitoring systems, applying updates promptly, and maintaining layered defenses against evolving threats.
With active exploitation underway, the urgency for patching affected SharePoint servers cannot be overstated. Taking immediate steps can prevent data breaches and safeguard sensitive internal communications.
