Microsoft Under Fire After Major SharePoint Security Breach

1

While Microsoft has issued security updates for affected SharePoint versions, an older 2016 version remains vulnerable as the company works to develop a patch. Cybersecurity experts at Palo Alto Networks estimated this breach potentially affects thousands of organisations worldwide, highlighting the real and immediate threat posed by these exploits.

The vulnerability is of particular concern as it allows hackers to impersonate users even after patches are applied, according to researchers at Eye Security, a European cybersecurity firm responsible for identifying the flaw. This breach significantly impacts organisations relying on SharePoint for document storage and collaboration.

This security breach raises grave concerns for businesses and governmental bodies relying on SharePoint. The capability to impersonate users and integrate with other Microsoft services such as Outlook and Teams exacerbates the risk, leading to potential data theft, password compromises, and further infiltrations. Eye Security researchers warn that breaches of this nature can escalate rapidly to data exfiltration, deployment of backdoors, and theft of cryptographic keys, presenting a long-term cybersecurity threat to organisations.

The incident underscores the necessity for organisations to remain vigilant and promptly apply available security updates to safeguard their systems. As threats evolve, maintaining robust cybersecurity measures is crucial to mitigating risks and protecting sensitive data from malicious attacks.

Microsoft is actively working to address the vulnerabilities and develop solutions for affected versions of SharePoint. Organisations using on-premises SharePoint servers are urged to install the security updates provided by Microsoft to enhance their defences against such threats.

Meanwhile, cybersecurity experts emphasise the importance of comprehensive security strategies, including regular system updates and employee awareness training, to combat sophisticated cyberattacks. As incidents like this highlight ongoing cybersecurity challenges, maintaining proactive measures and collaboration with security researchers will be vital for organisations to safeguard their digital assets and protect against future threats.

Published:Tuesday, 22nd Jul 2025
Source: Paige Estritori

Share this news item:

Insurance News

Clear

Reviving Australia's Troubled Insurance Industry: Opportunities and Challenges 30 Jul 2025: Paige Estritori Australia's retail life insurance sector is facing significant challenges despite generating approximately $9.4 billion in annual premiums. Upon closer examination, it's evident that this industry is under strain. Growth is primarily driven by price increases rather than the addition of new clients, signalling concerns for long-term sustainability. New business growth hovers around 8-9% annually, not enough to adequately bolster the sector. - read more

NSW Government Warns of Financial Impact from Stall in Workers' Compensation Reform 29 Jul 2025: Paige Estritori The New South Wales government has issued a stark warning regarding potential financial consequences if proposed reforms to workplace mental injury laws are delayed further. As an upper house committee gathers to discuss these changes, Treasurer Daniel Mookhey highlights the urgency, stating that setbacks will result in increased premiums. - read more

AFCA Rejects Traveller's Insurer Claim for Alternative Flight Costs 25 Jul 2025: Paige Estritori An Australian travel insurance policyholder faced disappointment as the Australian Financial Complaints Authority (AFCA) denied their claim for reimbursement of costs incurred due to changing travel plans amid threats of a pilot strike. The traveller, who rearranged his flights from Sydney to Vancouver and subsequently to Toronto, had hoped his insurer, AIG Australia, would cover the $5,576 expenses for the rebooked flights and additional accommodation. - read more

Fee Models Emerge as Solution to Cyclone Insurance Affordability Concerns 25 Jul 2025: Paige Estritori The affordability of cyclone insurance in Australia’s high-risk zones remains a pressing issue, prompting some brokers to shift towards fee-based models. This change is highlighted in the latest annual review of the cyclone reinsurance pool from the Australian Competition and Consumer Commission (ACCC). - read more

Homeowner's Storm Damage Claim Denied; Faulty Construction Cited 24 Jul 2025: Paige Estritori A homeowner's attempt to secure a storm damage insurance payout has been thwarted after an investigation revealed that the damage was due to poor maintenance and faulty construction, rather than extreme weather conditions. The initial claim attributed the damage on the property's western wall and roof eaves to significant rainfall, citing a substantial 141mm in July, with a notable record of 43.6mm in a single day. - read more