The company uncovers evidence that at least three China-based hacking groups are abusing the zero-day flaw in SharePoint software to access servers.
Chinese hackers appear to be having a field day exploiting the newly discovered flaw in Microsoft’s SharePoint software, which is widely used among businesses and governments.
Despite rolling out a fix, Microsoft is warning that at least three China-based hacking groups are exploiting the vulnerability to access internal SharePoint servers run by customers.
According to Microsoft, two of the groups are “Chinese nation-state actors,” called Linen Typhoon and Violet Typhoon, which focus on espionage and stealing intellectual property. “In addition, we have observed another China-based threat actor, tracked as Storm-2603, exploiting these vulnerabilities.
