Amazon Italy Pays €180M in Compensation as Delivery Staff Probe Ends 
YouTube Agrees to Follow Australia’s New Under-16 Social Media Ban 
Amazon and Google Launch New Multicloud Networking Service to Boost High-Speed Cloud Connectivity 
Apple Leads Singles’ Day Smartphone Sales as iPhone 17 Demand Surges 
EU Prepares Antitrust Probe Into Meta’s AI Integration on WhatsApp 
Proxy Advisors Urge Vote Against ANZ’s Executive Pay Report Amid Scandal Fallout 
Hikvision Challenges FCC Rule Tightening Restrictions on Chinese Telecom Equipment 
Quantum Systems Projects Revenue Surge as It Eyes IPO or Private Sale 
Taiwan Opposition Criticizes Plan to Block Chinese App Rednote Over Security Concerns 
IKEA Expands U.S. Manufacturing Amid Rising Tariffs and Supply Chain Strategy Shift 
Firelight Launches as First XRP Staking Platform on Flare, Introduces DeFi Cover Feature 
Australia Releases New National AI Plan, Opts for Existing Laws to Manage Risks 
ByteDance Unveils New AI Voice Assistant for ZTE Smartphones 
ExxonMobil to Shut Older Singapore Steam Cracker Amid Global Petrochemical Downturn 
Visa to Move European Headquarters to London’s Canary Wharf 
Wikipedia Pushes for AI Licensing Deals as Jimmy Wales Calls for Fair Compensation 
Australia Moves Forward With Teen Social Media Ban as Platforms Begin Lockouts 
Microsoft (NASDAQ: MSFT) has issued an urgent security alert warning of active zero-day attacks targeting SharePoint servers used by government agencies and enterprises. The tech giant emphasized that the cloud-based SharePoint Online in Microsoft 365 remains unaffected. However, on-premise SharePoint servers, particularly SharePoint Subscription Edition, are at immediate risk due to a critical spoofing vulnerability.
The FBI confirmed awareness of the ongoing attacks and is coordinating with federal and private-sector partners, though it has not disclosed further details. According to The Washington Post, unidentified threat actors recently exploited this flaw to breach multiple U.S. and international organizations. Experts categorize this as a zero-day attack—a type of exploit targeting unknown software vulnerabilities—placing tens of thousands of servers at risk.
Microsoft explained the flaw allows an authorized attacker to conduct spoofing over a network, impersonating trusted sources to manipulate systems or gain unauthorized access. The company has released a security update for SharePoint Subscription Edition and strongly urges users to apply it immediately.
Security patches for SharePoint 2016 and 2019 are in development. Until they are available, Microsoft advises organizations unable to implement recommended malware protections to disconnect vulnerable servers from the internet to prevent potential breaches.
This incident highlights the growing threat to enterprise infrastructure and the importance of timely patch management. Organizations relying on SharePoint for internal collaboration should act swiftly to mitigate the risk. Cybersecurity experts recommend continuously monitoring systems, applying updates promptly, and maintaining layered defenses against evolving threats.
With active exploitation underway, the urgency for patching affected SharePoint servers cannot be overstated. Taking immediate steps can prevent data breaches and safeguard sensitive internal communications.
