Microsoft SharePoint server hack sees Chinese threat actor hit roughly 100 orgs - here’s what we know so far

• Around 100 organizations have been targeted by Microsoft SharePoint vulnerability
• Series of cyberattacks appear to be the work of Chinese hackers
• The vulnerability has left as many as 8,000 servers at risk

A cyberespionage campaign exploiting the recently-revealed Microsoft SharePoint issue has targeted roughly 100 organizations, compromising server software and primarily hitting government agencies in the US and Germany, experts have warned.

Google released a statement in which it attributed at least some of the attacks to a ‘China-Nexus threat actor,’ and warned against further expansion of the threat.

Microsoft recently released urgent security flaw patches to address a zero-day vulnerability that affected SharePoint servers, which have been abused in attacks since July 18, with victims reportedly including a private energy operator in California as well as a private fintech firm in New York.