A large-scale cyber espionage operation has exploited a vulnerability in Microsoft SharePoint server software, affecting around 100 organizations worldwide.
The attack is called a 'zero-day' because it takes advantage of a previously unknown vulnerability, allowing hackers to install a 'backdoor' on SharePoint servers to gain continuous access to the victim's systems.
The affected organizations include government agencies, financial institutions, major industrial companies, hospitals and audit firms in the United States (US) and Germany.
Dutch security firm Eye Security together with Shadowserver conducted a scan of the internet network and found that almost 100 servers had been hacked before the attack method was made public.
The FBI confirmed that an investigation is underway and is working with public and private sector partners, while the United Kingdom's (UK) National Cyber Security Center also reported several targets in the country.
Microsoft has issued a security update and urged customers to install it immediately, while stressing that online Microsoft 365 servers are not affected.
