Recently, Microsoft has issued a warning about the risk of hacking attacks targeting the server software used by government agencies and businesses to share internal documents. At the same time, the company recommends that customers immediately install the update for security.
In its latest warning, Microsoft has highlighted these vulnerabilities in the SharePoint server system used internally by organizations. The "tech giant" noted that SharePoint Online is a Microsoft 365 platform that is stored on the cloud, so it is not affected by these attacks.
Microsoft said that the vulnerability allows hackers to commit fake identities (spoofing) online. Spoofing is a criminal act of impersonating a person, organization or website to trust and deceive the system, users or network devices.
Microsoft has announced the release of a security update forpoint Subscription Edition and recommends that customers install it immediately. The company is also updating the 2016 and 2019 versions of SharePoint.
If the malware protection feature cannot be enabled as recommended, customers should disconnect the server from the Internet until there is a security update.
The US Federal Bureau of Investigation ( FBI) has grasped information about the above attacks and is closely coordinating with federal and private partners, but did not provide further details.
Accordingly, in recent days, unidentified subjects have exploited security vulnerabilities to attack US and foreign agencies and businesses. Experts say the attack was called a "zero-day" attack because it targeted an unprecedented vulnerability. Currently, tens of thousands of servers are facing risks.
