According to safety researchers, hackers have broken at least 400 organizations using zero -day vulnerability in Microsoft SharePoint, which means a strong increase in the number of compromises observed because the error was found last week.
Eye safety, a Dutch cyber security company that first identified the vulnerability In SharePoint, the popular server software that companies use to save and share internal documents said it had identified hundreds of SharePoint servers by scanning the Internet. The figure has risen from dozens of well -known endangered servers earlier this week.
Bloomberg reports The fact that one of the organizations concerned is the National Nuclear Safety Administration (NSS), the Federal Agency, which is responsible for maintaining and developing the storage of the US nuclear weapons. The spokesman of the Ministry of Energy, a Ministry of Energy, did not respond to Techcrunch’s comment request.
Many other state institutions and agencies had also endangered the early waves of the SharePoint error in the early wave, the researchers confirmed. The information suggests that hackers use vulnerability as early as 7 July.
Bug, officially known as the name CVE-2025-53770influences SharePoint’s self -party versions set up and dominated by companies. When used, the error gives the attacker a remote connection with the harmful code that allows access to the files stored and other extensive network systems.
The vulnerability is known on the zero day because Microsoft had no time to release repairs before it was utilized. Microsoft has since released repair information for all influences for SharePoint versions.
Google and Microsoft say that they have evidence that several Chinese -supported hacking groups make use of the mistake, but warned companies to wait for compromises to increase as more hacker groups were trying to take advantage of vulnerability. The Chinese government denied the claims.
TechCrunch event
San Francisco
And
27.-29. October 2025
