Microsoft said on Wednesday that some of the infiltrators participating in a constant attack on the SharePoint platform have escalated their methods and are now using a ransom.
The technology company said that the storm 2603-is a group of microsoft infiltrators that it believes is based in China-is now used by Warlock Ransomware in its attack on the company SharePoint platform, according to what he said, according to what he said. The company’s blog post has been updated.
SharePoint attacks began on zero day On July 18, users only affected the file sharing program in the workplace on their own servers. SharePoint Online was not affected by Microsoft 365 by hacking.
Since then, Microsoft has blamed the state’s infiltrators, and design groups including Linen Typhoon, Violet Typhoon and Storm-2603. It was claimed that these groups took advantage of the defects in SharePoint to storm government systems, steal accreditation data and maintain long -term access.
The Ministry of Education was also affected by the Ministry of Revenue, Florida, the General Assembly of Rod Island, and even national governments in Europe and the Middle East, according to Microsoft.
Microsoft said in the blog post that she is evaluating “high confidence” that infiltrators will continue to take advantage of some weaknesses in the program in their attacks.
The company was the center of multiple electronic attacks of Chinese and Russian infiltrators over the years, in a series of events a He called the Review Council in the United States “A series of security failures” last year.
Emily Price contributed to this article.
https://qz.com/cdn-cgi/image/width=300,quality=85,format=auto/https://assets.qz.com/media/GettyImages-2225803526.jpg
2025-07-24 17:20:00
