Space Travel News
CYBER WARS
 Chinese state hackers targeting Microsoft customers
Chinese state hackers targeting Microsoft customers
 by AFP Staff Writers
 San Francisco, United States (AFP) July 22, 2025

Chinese state-sponsored hackers are actively exploiting critical security vulnerabilities in users of Microsoft's popular SharePoint servers to steal sensitive data and deploy malicious code, the US tech giant warned Tuesday.

Microsoft said it has observed three threat groups -- dubbed Linen Typhoon, Violet Typhoon, and Storm-2603 -- targeting internet-facing SharePoint servers using two newly disclosed vulnerabilities that allow attackers to bypass authentication and execute remote code.

SharePoint Server is Microsoft's collaboration and document management platform designed for businesses and organizations.

Many large organizations use SharePoint as their primary platform for internal collaboration and for storing documents, and is appreciated for working well with other Microsoft products like Office, Teams, and Outlook.

The attacks, which Microsoft said began as early as July 7, affect only on-premises SharePoint installations and do not impact the cloud-based SharePoint Online service, the company said in a security bulletin.

Microsoft warned that it "assesses with high confidence" that the threat actors will continue their assault against vulnerable systems where companies haven't taken the necessary precautions.

The vulnerabilities allow attackers to spoof authentication credentials and execute malicious code remotely on vulnerable servers.

Microsoft has released comprehensive security updates to address the malware and urged customers to apply the patches immediately.

In their successful attacks, the Chinese hackers deployed malicious code that provides backdoor access to compromised systems. The attackers used these tools to steal machine encryption keys and maintain access to targeted networks.

Linen Typhoon, active since 2012, primarily focuses on intellectual property theft from government, defense, and human rights organizations.

Violet Typhoon, operating since 2015, conducts espionage against former government officials, NGOs, think tanks, and media organizations across the United States, Europe, and East Asia.

Storm-2603, which Microsoft assesses with "medium confidence" to be China-based, has previously deployed ransomware but its current objectives remain unclear.

Research from cybersecurity company Check Point said the campaign began on July 7 against a major Western government and that the attacks intensified dramatically around July 18.

Since then, researchers have confirmed dozens of compromise attempts primarily targeting organizations in North America and Western Europe, Check Point said in a blog post.

Related Links
 Cyberwar - Internet Security News - Systems and Policy Issues

Subscribe Free To Our Daily Newsletters
Tweet

RELATED CONTENT
The following news reports may link to other Space Media Network websites.
CYBER WARS
Chinese-born engineer pleads guilty to stealing US trade secrets
 Los Angeles, United States (AFP) July 21, 2025
 A Chinese-born US researcher pleaded guilty on Monday to stealing trade secrets, including technology used to detect nuclear missile launches, the Justice Department said. Chenguang Gong, 59, of San Jose, California, was accused of transferring more than 3,600 files from the research and development company where he worked to his personal storage devices. Gong pleaded guilty in a central California district court on Monday to one count of theft of trade secrets and faces a maximum penalty of 10 ... read more
CYBER WARS
CYBER WARS
ExoMars completes successful Earth test of record breaking parachutes

 Ancient river systems reveal Mars was wetter than we thought

 Chinese researchers craft high fidelity Mars soil simulant to support future missions

 Largest piece of Mars on Earth sells for $5.3M in Sotheby's auction
CYBER WARS
UCF researchers developing new methods to passively mitigate lunar dust for space exploration

 Juice radar shows lunar mapping success in Apollo Earthrise region

 Pope calls Buzz Aldrin to mark 1969 moon landing

 Chang'e-6 mission reveals ancient volcanic and magnetic secrets from Moon's farside
CYBER WARS
Fossil object 2023 KQ14 challenges Planet Nine theory with unique distant orbit

 UH Researchers Help Solve Uranus Heat Mystery

 Unexpected Dust Patterns Found on Uranus Moons Confound Scientists

 SwRI study shows Europa's icy surface constantly reshaping
CYBER WARS
Alien life clues may emerge from deep sea volcanic vents on Earth

 One billion years of protein evolution reveals surprising design flexibility

 NASA Research Shows Path Toward Protocells on Titan

 Astronomers observe birth of a solar system for first time
CYBER WARS
New MachLab rocket test site launches UK into next phase of space engineering

 Lunar soil shows promise for in-situ oxygen and fuel production

 SpaceX scrubs launch of 2 SES mPOWER satellites

 Electrolyzer experiment from SwRI and UTSA to fly in low gravity test mission
CYBER WARS
Six Chinese universities to launch new low altitude space major this fall

 International deep space alliance launched in Hefei China

 China launches international association to boost global access to deep space research

 Chinese Long March Rockets Make International Debut at Paris Air Show
CYBER WARS
Seismic signatures reveal fragmentation patterns of fireball meteoroids

 Massive Boulders Ejected During DART Mission Complicate Future Asteroid Deflection Efforts

 Newly discovered interstellar object 'may be oldest comet ever seen'

 Comet believed to be 3 billion years older than our solar system
Subscribe Free To Our Daily Newsletters




The content herein, unless otherwise known to be public domain, are Copyright 1995-2024 - Space Media Network. All websites are published in Australia and are solely subject to Australian law and governed by Fair Use principals for news reporting and research purposes. AFP, UPI and IANS news wire stories are copyright Agence France-Presse, United Press International and Indo-Asia News Service. ESA news reports are copyright European Space Agency. All NASA sourced material is public domain. Additional copyrights may apply in whole or part to other bona fide parties. All articles labeled "by Staff Writers" include reports supplied to Space Media Network by industry news wires, PR agencies, corporate press officers and the like. Such articles are individually curated and edited by Space Media Network staff on the basis of the report's information value to our industry and professional readership. Advertising does not imply endorsement, agreement or approval of any opinions, statements or information provided by Space Media Network on any Web page published or hosted by Space Media Network. General Data Protection Regulation (GDPR) Statement Our advertisers use various cookies and the like to deliver the best ad banner available at one time. All network advertising suppliers have GDPR policies (Legitimate Interest) that conform with EU regulations for data collection. By using our websites you consent to cookie based advertising. If you do not agree with this then you must stop using the websites from May 25, 2018. Privacy Statement. Additional information can be found here at About Us.