Hackers Targeting Microsoft SharePoint Servers

5Mind. The Meme Platform

Cloud-based SharePoint Online in Microsoft 365 is a different system and is not impacted, the U.S. Cyber Security and Infrastructure Defense Agency said.

Hackers are attacking on-premises Microsoft SharePoint server vulnerabilities, the U.S. Cyber Security and Infrastructure Defense Agency (CISA) announced in a July 20 report.

SharePoint Servers are used by organizations to create a private intranet service that builds websites, manages document sharing, and supports other collaborative efforts within the company.

“This exploitation activity, publicly reported as ‘ToolShell,’ provides unauthenticated access to systems and enables malicious actors to fully access SharePoint content, including file systems and internal configurations, and execute code over the network,” CISA said, adding that the scope and impact of the new remote code execution (RCE) attack is being assessed.

Microsoft acknowledged the issue a day earlier. In a July 19 guidance report, the company said the exploitation attempt applied to SharePoint servers only. Cloud-based SharePoint Online in Microsoft 365 is a different system and is not impacted.

The whole SharePoint suite is used by more than 200,000 organizations and 190 million people worldwide, according to the company.

The July security update only partially addresses existing vulnerabilities, Microsoft said. New security updates that fully protect customers using SharePoint Subscription Edition and SharePoint 2019 have been released.

Customers are advised to apply system updates immediately to ensure protection. Security updates for SharePoint 2016 users are not yet released.

Microsoft posted a list of ways that customers can mitigate the attacks. They include installing the latest security updates, using supported versions of on-premises SharePoint Server, making sure the Antimalware Scan Interface is turned on and configured correctly in combination with an antivirus solution, deploying services like Microsoft Defender for Endpoint protection, and rotating SharePoint Server ASP.NET machine keys.

More technical details for advanced hunting techniques and other mitigation efforts are on the Microsoft website.

CISA Recommendations

To reduce risks associated with the RCE exploitation attempt, CISA has several recommendations for organizations. It reiterated Microsoft’s guidance on activating Antimalware Scan Interface (AMSI) and MS Defender on all servers.

By Naveen Athrappully

Read Full Article on TheEpochTimes.com

Contact Your Elected Officials
The Epoch Times
The Epoch Timeshttps://www.theepochtimes.com/
Tired of biased news? The Epoch Times is truthful, factual news that other media outlets don't report. No spin. No agenda. Just honest journalism like it used to be.

Ring That Bell

If I could travel back in time to 1776,...

Thoughts On America 250

Before you, American reader, is the honor, blessing, and privilege of celebrating the 250th anniversary of our nation. A nation toward which God has been merciful, shining His great grace.
00:09:03

Two birthdays apart

The Bicentennial was not just a commemoration of 200 years of independence – it was a coast‑to‑coast block party of red, white and blue.
00:02:31

Is Charlie Kirk’s Assassination Looking More Like a Conspiracy?

Enough videos have been posted to the internet, plenty...

Is There a 9/11 WTC and 9/10 Charlie Kirk Connection?

Strange parallels in online stories raise questions about whether Israelis and Mossad intelligence are our allies or adversaries.

Judicial Watch Victory: DC Police Produces 1,627 January 6 Bodycam Videos

https://www.youtube.com/watch?v=8_a99nDhFT4 (Washington, DC) – Judicial Watch announced today that the Washington,...

Federal Judge Finds Trump IRS Suit Collusive, Improper

A federal judge ruled that President Trump’s lawsuit against the IRS over his leaked tax returns was an example of self-dealing that was filed for an “improper purpose.”

xAI Rebrands as SpaceXAI, Launches New Grok 4.5 Model

xAI has officially rebranded itself as SpaceXAI and has a new logo, the company recently announced on X.
00:18:20

Sen. Lindsey Graham Dies at 71 From Suspected Aorta Rupture, Preliminary Findings Show

Sen. Lindsey Graham (R-S.C.) died from a “brief and sudden illness” Saturday evening, his office said in a statement.

Trump Warns of Global Spread of Communism at NATO Summit

President Trump reiterated his warnings about communism during the NATO summit in Ankara on July 8, saying he believes it’s taking root in the US and around the world.

Trump Arrives in Ankara to Meet With NATO Allies

It marks the first visit to Turkey by a...
00:01:40

President Launches Trump Accounts for Children With Historic Opening of NYSE, NASDAQ

President Trump rang a bell to open the New York Stock Exchange and NASDAQ during an Oval Office ceremony to launch accounts for children across the nation.

Trump Shares New US Passport Design on Truth Social

The mockup shows limited-edition passports planned for a July...
spot_img

Related Articles

Popular Categories

MAGA Business Central