Microsoft Issues Urgent Security Update for SharePoint Server Vulnerability

2 days ago

Microsoft has issued an urgent warning about active attacks targeting its server software used by government agencies and businesses for internal file sharing. The company advises customers to apply the security update immediately. The FBI is aware of these attacks and is collaborating with federal and private sector partners, though further details have not been disclosed.

According to Microsoft's alert, the vulnerabilities affect only SharePoint servers used internally by organizations. SharePoint Online, part of Microsoft 365, remains unaffected. Recent reports indicate that unidentified hackers have exploited a previously unknown vulnerability, launching attacks on U.S. and international agencies and businesses. This type of "zero-day" attack poses a risk to thousands of servers.

Microsoft explained that the vulnerability allows authorized attackers to perform spoofing on the network. The company has provided guidance on preventing these exploits, as spoofing attacks enable attackers to impersonate trusted entities, potentially manipulating financial markets or institutions.

The company has released a security update for SharePoint Subscription Edition and urges users to apply it immediately. Updates for SharePoint 2016 and 2019 are also underway. If customers cannot enable the recommended malware protection, they should disconnect their servers from the internet until the security updates are available.

Disclosures

I/We may personally own shares in some of the companies mentioned above. However, those positions are not material to either the company or to my/our portfolios.

Research Tools

All-In-One Screener Stock Ideas Stock List Guru List Guru Real-Time Picks Insider List Insider Trades Economic Indicators Sector & Industry Performance DCF Calculator Discussion Board

Product

Pricing Plans Excel Add-In Google Sheets Add-on Data API Stock Comparison Table Manual of Stocks Instant Alerts Mobile App 中文

Education

Financial Glossary Tutorials FAQ Schedule Free Session Buffett Indicator Shiller P/E Yield Curve Today U.S. Inflation Rate Global Market Valuation Fed Net Liquidity Buffett Assets Allocation

Company

About GuruFocus Career Contact Us Advertise Term of Use Privacy Policy Referral Program Partner Program

Survey

We'd love to learn more about your experiences on GuruFocus.com and how we can improve!

Take Survey

Disclaimers

GuruFocus.com is not operated by a broker or a dealer. Under no circumstances does any information posted on GuruFocus.com represent a recommendation to buy or sell a security. The information on this site, and in its related newsletters, is not intended to be, nor does it constitute investment advice or recommendations. The individuals or entities selected as "gurus" may buy and sell securities before and after any particular article and report and information herein is published, with respect to the securities discussed in any article and report posted herein. Gurus may be added or dropped from the GuruFocus site at any time. In no event shall GuruFocus.com be liable to any member, guest or third party for any damages of any kind arising out of the use of any content or other material published or available on GuruFocus.com, or relating to the use of, or inability to use, GuruFocus.com or any content, including, without limitation, any investment losses, lost profits, lost opportunity, special, incidental, indirect, consequential or punitive damages. Past performance is a poor indicator of future performance. The information on this site, and in its related newsletters, is not intended to be, nor does it constitute investment advice or recommendations. The information on this site is in no way guaranteed for completeness, accuracy or in any other way. The gurus listed in this website are not affiliated with GuruFocus.com, LLC. Stock quotes are provided by QuoteMedia, Inc. (CSI). Company fundamental data is provided by Morningstar. Analyst estimates data is sourced from both Refinitiv and Morningstar, with priority given to Refinitiv data. Data is updated daily.