SpaceX Reportedly Preparing Record-Breaking IPO Targeting $1.5 Trillion Valuation 
Australia Enforces World-First Social Media Age Limit as Global Regulation Looms 
Mizuho Raises Broadcom Price Target to $450 on Surging AI Chip Demand 
Taiwan Opposition Criticizes Plan to Block Chinese App Rednote Over Security Concerns 
Trello Outage Disrupts Users as Access Issues Hit Atlassian’s Work Management Platform 
Moore Threads Stock Slides After Risk Warning Despite 600% Surge Since IPO 
U.S.-EU Tensions Rise After $140 Million Fine on Elon Musk’s X Platform 
Gulf Sovereign Funds Unite in Paramount–Skydance Bid for Warner Bros Discovery 
Australia’s Under-16 Social Media Ban Sparks Global Debate and Early Challenges 
JD.com Pledges 22 Billion Yuan Housing Support for Couriers as China’s Instant Retail Competition Heats Up 
Apple App Store Injunction Largely Upheld as Appeals Court Rules on Epic Games Case 
Air Force One Delivery Delayed to 2028 as Boeing Faces Rising Costs 
Rio Tinto Signs Interim Agreement With Yinhawangka Aboriginal Group Over Pilbara Mining Operations 
China Adds Domestic AI Chips to Government Procurement List as U.S. Considers Easing Nvidia Export Curbs 
ADB Approves $400 Million Loan to Boost Ease of Doing Business in the Philippines 
Intel’s Testing of China-Linked Chipmaking Tools Raises U.S. National Security Concerns 
Trump Signs Executive Order to Establish National AI Regulation Standard 
Microsoft (NASDAQ: MSFT) has issued an urgent security alert warning of active zero-day attacks targeting SharePoint servers used by government agencies and enterprises. The tech giant emphasized that the cloud-based SharePoint Online in Microsoft 365 remains unaffected. However, on-premise SharePoint servers, particularly SharePoint Subscription Edition, are at immediate risk due to a critical spoofing vulnerability.
The FBI confirmed awareness of the ongoing attacks and is coordinating with federal and private-sector partners, though it has not disclosed further details. According to The Washington Post, unidentified threat actors recently exploited this flaw to breach multiple U.S. and international organizations. Experts categorize this as a zero-day attack—a type of exploit targeting unknown software vulnerabilities—placing tens of thousands of servers at risk.
Microsoft explained the flaw allows an authorized attacker to conduct spoofing over a network, impersonating trusted sources to manipulate systems or gain unauthorized access. The company has released a security update for SharePoint Subscription Edition and strongly urges users to apply it immediately.
Security patches for SharePoint 2016 and 2019 are in development. Until they are available, Microsoft advises organizations unable to implement recommended malware protections to disconnect vulnerable servers from the internet to prevent potential breaches.
This incident highlights the growing threat to enterprise infrastructure and the importance of timely patch management. Organizations relying on SharePoint for internal collaboration should act swiftly to mitigate the risk. Cybersecurity experts recommend continuously monitoring systems, applying updates promptly, and maintaining layered defenses against evolving threats.
With active exploitation underway, the urgency for patching affected SharePoint servers cannot be overstated. Taking immediate steps can prevent data breaches and safeguard sensitive internal communications.
