Microsoft Server Hack Affects 100 Organizations Worldwide

Two entities involved in uncovering a massive cyber espionage campaign revealed on Monday that an attack on Microsoft targeted the company’s server software and resulted in the breach of approximately 100 organizations.

This attack is classified as a “zero-day” vulnerability because it relies on a previously undisclosed digital flaw, allowing attackers to compromise vulnerable servers and install a backdoor that gives them persistent access to the targeted organizations’ systems.

Microsoft issued a warning on Saturday about “active” attacks targeting self-hosted SharePoint servers, a service widely used within organizations for document sharing and internal collaboration. The company explained that copies of SharePoint hosted on Microsoft’s cloud servers were not affected by the attack.