Microsoft announced active hacker attacks on the SharePoint server software, which is used by companies and government agencies for the exchange of documents within organizations. The vulnerability concerns only local servers, the cloud service of SharePoint Online in Microsoft 365 was not injured.
The attack belongs to the type of “zero day” – this means that the attackers took advantage of the previously unknown vulnerability. According to Microsoft, the attackers can use this vulnerability to mask their personality and impersonate trusted sources. Such an intervention allows you to secretly penetrate the systems and potentially manipulate data.
The company recommended urgently installing security updates that have already been released. For those who cannot use antivirus protection in full, Microsoft advises to temporarily disconnect the servers from the network to prevent hacking.
