Journos News - Breaking News, World News, Top Stories, Todays Headlines and Flash Reports
Wednesday, July 15, 2026
  • Login
  • Home
  • World
    • Africa
    • Americas
    • Asia
    • Europe
    • Middle East
    • Oceania
  • Politics
  • Business
  • Technology
  • Health
  • Science
  • Sports
  • Entertainment
  • Culture
No Result
View All Result
  • Home
  • World
    • Africa
    • Americas
    • Asia
    • Europe
    • Middle East
    • Oceania
  • Politics
  • Business
  • Technology
  • Health
  • Science
  • Sports
  • Entertainment
  • Culture
No Result
View All Result
Journos News - Breaking News, World News, Top Stories, Todays Headlines and Flash Reports
No Result
View All Result
Home Technology

Microsoft Urges Emergency Fix as Hackers Exploit SharePoint Zero-Day Vulnerability

SharePoint Servers Under Attack: Microsoft Issues Urgent Patch for Zero-Day Flaw

The Daily Desk by The Daily Desk
June 14, 2026
in Technology, Technology Policy & Regulation
0
ToolShell Malware Breaches Microsoft SharePoint: Patch Now, Experts Warn - AP Photo/Rick Rycroft, File

Cyberattack Alert: SharePoint Vulnerability Threatens U.S. Agencies and Businesses - AP Photo/Rick Rycroft, File

Microsoft SharePoint Hack: What to Know About the New Zero-Day Vulnerability Affecting Servers Worldwide

A serious security flaw in Microsoft SharePoint is being used by hackers to attack businesses and some U.S. government agencies. Microsoft has issued a warning and is urging anyone using certain versions of SharePoint to patch their systems immediately. The issue affects on-site servers — not cloud-based ones — and could lead to major data breaches if not fixed quickly.

What Is Happening?

Microsoft SharePoint, a platform widely used by companies and organizations for managing files and team collaboration, is currently facing a critical cybersecurity issue. Over the weekend, Microsoft confirmed that hackers are actively exploiting a “zero-day vulnerability” in its SharePoint Server software.

A zero-day vulnerability is a previously unknown flaw in software that hackers can use before a fix is available — meaning developers have had “zero days” to patch it. This makes it especially dangerous.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) says the current vulnerability is a variation of an existing issue known as CVE-2025-49706. The exploit allows attackers to gain full access to the SharePoint system, including connected services like Microsoft Teams and OneDrive.

Who Is Affected?

Anyone running Microsoft SharePoint Server software on their own servers — often called “on-premise” servers — is at risk. That includes:

RELATED POSTS

Virtual Taekwondo Expands Across Asia Ahead of Landmark Asian Games Debut

AI Researchers Shift Focus Beyond Large Language Models Toward World Models for Real-World Intelligence

South Koreans Turn to AI-Generated Videos to Preserve Memories of Deceased Loved Ones

WhatsApp Introduces Usernames to Reduce Phone Number Exposure on Messaging Platform

AI Chatbots Become Modern Dating Coaches as Singles Seek Help Finding Romance

VLC Developer Jean-Baptiste Kempf Builds Low-Latency Infrastructure for Robot Control Systems

  • Government offices
  • Schools and universities
  • Healthcare networks
  • Private businesses of all sizes

It does not affect SharePoint Online, Microsoft’s cloud-based version of the software.

Cybersecurity firm Eye Security said it scanned over 8,000 SharePoint servers around the world and found that dozens had already been compromised. They believe the attacks began on July 18.

What Is the ToolShell Exploit?

Security researchers believe hackers are using a tool known as ToolShell to carry out these attacks. According to Google’s Threat Intelligence Group, this exploit may allow hackers to maintain access even after patches are applied — a big concern for long-term data security.

Adam Meyers, a senior vice president at cybersecurity firm CrowdStrike, said,

“Anybody who’s got a hosted SharePoint server has got a problem. It’s a significant vulnerability.”

The concern is not just about immediate damage. If hackers can maintain access even after companies think they’ve fixed the issue, it could lead to long-lasting breaches and data theft.

What Has Microsoft Done?

Microsoft issued an emergency alert on Saturday, July 20, confirming the vulnerability and saying a fix was on the way. By Sunday, the company had released official guidance on how to patch:

  • SharePoint Server 2019
  • SharePoint Server Subscription Edition

However, Microsoft is still working on a fix for older software — specifically SharePoint Server 2016.

If your organization uses one of these versions, it’s important to apply Microsoft’s patch immediately or follow any temporary workarounds they suggest.

What Should You Do Now?

If your business or agency is running SharePoint Server software on-premise, here’s what experts recommend:

  • Patch immediately. Follow Microsoft’s updated guidance to install the security fix.
  • Take affected servers offline. Both Microsoft and CISA advise disconnecting vulnerable servers from the internet until patches are applied.
  • Check for signs of compromise. Review system logs, audit access, and monitor for unusual activity.
  • Stay updated. Monitor Microsoft’s support page and cybersecurity alerts for the latest developments.

For organizations using SharePoint Online, there’s currently no need to take action — the cloud-based system is not affected by this exploit.

Why This Matters

SharePoint is a core tool for thousands of organizations to manage internal documents and team communications. A security flaw that gives hackers full access to those systems can lead to:

  • Data breaches
  • Ransomware attacks
  • Leaks of confidential files
  • Disruption to internal operations

Because many government agencies and critical services (like healthcare and education) rely on SharePoint, this vulnerability could have wide-reaching effects.

Final Thoughts

This incident is a reminder of the risks involved with running on-premise server software. Unlike cloud-based systems, on-site servers require constant monitoring and manual patching to stay secure.

If your organization hasn’t reviewed its SharePoint setup in a while, now is the time.

The situation is still unfolding, and Microsoft continues to release updates. Make sure your IT teams are staying informed and acting quickly to protect your systems from potential damage.

Source: AP News – What to know about a vulnerability being exploited on Microsoft SharePoint servers

Tags: #CISASecurityAdvisory#CloudVsOnPremiseSecurity#CrowdStrikeCyberAlert#CyberAttackWarning#EmergencyServerFix#MicrosoftSecurityUpdate#MicrosoftSharePoint#OnPremiseServerThreat#SharePointPatchAlert#SharePointVulnerability#ToolShellMalware#ZeroDayExploit
The Daily Desk

The Daily Desk

The Daily Desk is a contributor at JournosNews.com covering politics, media, governance, and the evolving dynamics of public discourse. Stories published under this byline are produced in accordance with JournosNews' editorial standards, with an emphasis on verified reporting, accuracy, context, and impartiality.

Related Posts

Virtual Taekwondo Expands Across Asia Ahead of Landmark Asian Games Debut

by The Daily Desk
July 8, 2026
0
Athlete competing in Virtual Taekwondo using VR headset and motion sensors - AP Photo/Vincent Thian

KUALA LUMPUR, Malaysia - Virtual taekwondo is moving from an experimental concept to an organized international competition as the discipline...

Read moreDetails

AI Researchers Shift Focus Beyond Large Language Models Toward World Models for Real-World Intelligence

by The Daily Desk
July 3, 2026
0
Researchers discuss World Models AI for advanced robotics and physical reasoning - Bloomberg via Getty Images/BBC

Artificial intelligence researchers are increasingly exploring alternatives to today's large language models (LLMs), arguing that current systems excel at language...

Read moreDetails

South Koreans Turn to AI-Generated Videos to Preserve Memories of Deceased Loved Ones

by The Daily Desk
July 2, 2026
0
AI-generated memorial video recreating a deceased loved one in South Korea - AP Photo/Ahn Young-joon

SEOUL, South Korea - Artificial intelligence is becoming an increasingly personal part of the grieving process in South Korea, where a...

Read moreDetails

WhatsApp Introduces Usernames to Reduce Phone Number Exposure on Messaging Platform

by The Daily Desk
June 30, 2026
0
WhatsApp application displaying new username privacy feature on a smartphone - AP Photo/Martin Meissner, File

LONDON - WhatsApp is preparing to introduce usernames as an alternative way for people to connect on its messaging platform,...

Read moreDetails

AI Chatbots Become Modern Dating Coaches as Singles Seek Help Finding Romance

by The Daily Desk
June 28, 2026
0
Person using AI chatbot while chatting on a dating application - AP Illustration / Peter Hamlin

Artificial intelligence is taking on a growing role in modern dating, with many singles turning to AI-powered chatbots for help...

Read moreDetails

VLC Developer Jean-Baptiste Kempf Builds Low-Latency Infrastructure for Robot Control Systems

by The Daily Desk
June 21, 2026
0
Low latency infrastructure powering robotic and drone systems - Image Credits: Nathan Laine/Bloomberg via Getty Images

Jean-Baptiste Kempf, best known as the lead developer behind the VLC Media Player, is now applying his experience in open-source...

Read moreDetails

Signal president warns AI chatbots are not friends amid privacy concerns

by The Daily Desk
June 21, 2026
0
Smartphone showing AI chatbot interface with privacy warning - Image Credits:/TechCrunch

Meredith Whittaker, president of the encrypted messaging service Signal, has warned against treating AI chatbots as social companions. Instead, she...

Read moreDetails

Apple expands iOS 27 AI strategy beyond Siri with system-wide automation features

by The Daily Desk
June 21, 2026
0
iPhone showing Apple Intelligence features across apps - Image Credits: Justin Sullivan(opens in a new window) / Getty Images

Apple is broadening its artificial intelligence strategy in iOS 27 with a set of system-level features that extend well beyond...

Read moreDetails

AI Helps Researchers Unlock Secrets Hidden in Medieval Ciphers

by The Daily Desk
May 30, 2026
0
AI-assisted analysis of encrypted medieval manuscripts and historical documents - Credit: Beáta Megyes

Artificial intelligence is helping historians and cryptographers uncover information hidden in encrypted medieval manuscripts. Researchers are now using machine learning...

Read moreDetails
Load More
Next Post
Federal Court Hears Harvard’s Lawsuit Against Trump Over Research Funding Freeze - AP Photo/Lisa Poole, File

Harvard Sues Trump Administration Over $2.6 Billion in Federal Funding Cuts

Starbucks Confirms Pumpkin Spice Latte Comeback for 2025: Full Launch Details - AP Photo/Peter Morgan, File

Starbucks Pumpkin Spice Latte Returns August 26: Here’s What to Know for 2025

Keeping Pets Cool in Record Heat: Vets and Owners Share Essential Tips - AP Photo/Cody Jackson

How to Keep Pets and Horses Safe During Extreme Heatwaves in Florida

JournosNews logo

Journos News delivers globally neutral, fact-based journalism that meets international media standards — clear, credible, and made for a connected world.

  • Categories
  • World News
  • Politics
  • Business & Markets
  • Technology
  • Health
  • Science
  • Sports
  • Arts & Culture
  • Resources
  • Editorial Standards
  • Submit a Story
  • Advertise with Us
  • Syndication & Partnerships
  • Site Map
  • Press & Media Kit
  • Editorial Team
  • Careers

Join thousands of readers receiving the latest updates, tips, and exclusive insights straight to their inbox. Never miss an important story again.

  • About Us
  • Editorial & Trust Center
  • Contact Us
  • Privacy Policy
  • Terms of Use & Copyright Notice

© JournosNews.com All rights reserved.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
JournosNews

Independent Journalism.
Verified Facts.

You're about to read a professionally edited article from JournosNews.com.

Every article is produced in accordance with our editorial standards, emphasizing factual accuracy, transparent attribution, fairness, editorial independence, and meaningful context.

Editorial Standards
No Result
View All Result
  • Home
  • World
    • Africa
    • Americas
    • Asia
    • Europe
    • Middle East
    • Oceania
  • Politics
  • Business
  • Technology
  • Health
  • Science
  • Sports
  • Entertainment
  • Culture

© JournosNews.com All rights reserved.

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.