by Dozens of organizations seem to be affected by hackers on the Microsoft server software in the last few days.
On Saturday, Microsoft announced in a post on his website that “active attacks that are aimed at the SharePoint server customers tailored to site by exploiting weaknesses”. SharePoint is a Microsoft platform with which customers can manage and share documents in their organizations.
Here is what you know about the attack and how you can protect yourself.
In Microsoft SharePoint, Hackers aimed at “vulnerability”
The Eye Security, a cybersecurity based in the Netherlands based in the Netherlands, said in a contribution that on Friday it identified the “great exploitation” of a “susceptibility to security” in Microsoft software. According to the company, the vulnerability was not “widely”.
Microsoft said that only servers that were housed in an organization were affected in the hack. SharePoint Online in Microsoft 365 was not influenced.
The eye safety warned that as soon as they violate SharePoint systems, hackers could access all content in them and move on the side of the Windows domain.
“Since Sharepoint is often associated with core services such as Outlook, teams and OneDrive, a violation can quickly lead to data theft, passwords and lateral movement throughout the network,” said the company. “This is a quickly developing, targeted exploit. Organizations with non -faulty SharePoint servers should not wait for a solution. You should immediately assess compromises and react accordingly.”
The researchers found that almost 100 organizations were affected by the attack at the weekend, said the chief hacker from Eye Security, Vaisha Bernard, Reuters. It is not yet clear who was responsible for the hack or what the motive was, according to the Washington post.
How you can protect yourself from the attack
Microsoft advised the customer to use Sharepoint to apply the latest security updates and ensure that the antimalware -Scan interface is switched on and properly configured. The US Cybersecurity & Infrastructure Security Agency recommended that customers take several technical steps to reduce the risks associated with the attack, including the configuration of the Antimalware interface.
The eye safety also suggested that customers who have confirmed that they were affected by the attack that “affected SharePoint servers”, “renew all qualifications and system secrets that can be exposed” and “include their incident reaction team or a trustworthy cybersecurity company”.
