Microsoft Security Flaw Exploited by Chinese Hackers

A vulnerability in Microsoft SharePoint software, known since May, has enabled a widespread global cyber espionage campaign. According to Reuters, a Microsoft security patch failed to fully fix the flaw, opening the door to hackers.

Microsoft confirmed that the initial fix was ineffective, but further patches have been released. The company stated that two alleged Chinese hacker groups, Linen Typhoon and Violet Typhoon, exploited the vulnerabilities.

The vulnerability was initially identified at a hacking competition in Berlin in May, with cybersecurity firm Trend Micro offering a cash prize for finding vulnerabilities in SharePoint. A Viettel researcher identified a flaw, named it ToolShell, and received the $100,000 prize.

The Shadowserver Foundation estimated that more than 9,000 servers were vulnerable, with most located in the United States and Germany. The German federal information security agency, BSI, did not detect compromised SharePoint servers on government networks.