Microsoft identified Chinese government-backed hacking groups that exploited vulnerabilities in SharePoint document management systems. The company named Linen Typhoon, Violent Typhoon, and Storm-2603 as responsible parties behind the global espionage campaign. These threat actors targeted businesses and government agencies through a zero-day flaw in self-managed SharePoint servers. The vulnerability allowed hackers to bypass authentication controls and impersonate legitimate users within affected systems. Attacks commenced on July 7th before public disclosure of the security breach.
The Chinese Embassy rejected Microsoft's accusations and labeled them baseless without solid evidence. Embassy officials emphasized China's opposition to cybercrimes and cyberattacks against any nation. Google's Chief Technology Officer confirmed that at least one attacking group maintained connections to China. Microsoft warned that additional hacking organizations attempt to exploit the same vulnerability. The technology corporation released emergency security patches and continues developing additional fixes to prevent future exploitation attempts.
The Chinese Embassy rejected Microsoft's accusations and labeled them baseless without solid evidence. Embassy officials emphasized China's opposition to cybercrimes and cyberattacks against any nation. Google's Chief Technology Officer confirmed that at least one attacking group maintained connections to China. Microsoft warned that additional hacking organizations attempt to exploit the same vulnerability. The technology corporation released emergency security patches and continues developing additional fixes to prevent future exploitation attempts.
