Microsoft servers that were hacked by state -backed Chinese groups, says a company
The company said that the Chinese “threatening actors” penetrated some Microsoft SharePoint servers and targeted the data of the companies they use.
It is said that the linen-backed linen and the Violet-2603, as well as “China-based STORM-2603”, is said to have “exploited weaknesses” in the local SharePoint servers, which is the type that companies use, but not in their cloud service.
The American company Tech Giant has released safety updates and advised all local Serpoint Server customers to install them.
“China is strongly opposed and overcomes all forms of electronic attacks and electronic crime,” said China’s US embassy spokesman in China.
“At the same time, we are opposed to firmly staining others without strong evidence,” Leo Bingio continued in the statement published on X.
Microsoft said it has “high confidence” that infiltrators will continue to target their systems that have not proven their safety updates.
“Investigations into other actors that use these exploits are still ongoing,” Microsoft said in a statement.
He added that he will update it The site blog With more information and continued to be achieved.
Microsoft said she noticed attacks in which the infiltrators sent a request to the SharePoint servant “Enable theft of the main materials through the actors to threaten.”
This includes a “limited number” of SharePoint servants in the United Kingdom.
Charles Karmal, the chief technology official at Mandyan Consulting Company, a section of Google Cloud, told BBC News that she is “familiar with many victims in many different sectors across a number of global geographical regions.”
Carmakal said it seems that governments and companies that use SharePoint on their sites were the primary goal.
He said that a number of opponents who stole encrypted materials by encryption were able to restore continuous access to the SharePoint data for the victims.
“This has been exploited in a very wide way, very opportunist before the correction is available. It is why this is important,” Karmal said.
Karmal said that “Chinese-Nixos” publishes techniques similar to the previous campaigns associated with Beijing.
Microsoft said the linen “focused on theft of intellectual property, targeting organizations related to government, defense, strategic planning and human rights” for 13 years.
He added that Typhoon Violet was “devoted to espionage”, as it primarily targeted the pillars of the former government and military, NGOs, thought tanks, higher education, media, financial sector, and health sector in the United States, Europe and East Asia.
Meanwhile, STORM-2603 was evaluated with medium confidence to be the representative of the threat in China. “