EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • Microsoft SharePoint Breach Attributed to Chinese State-Linked Hackers

    Microsoft SharePoint Breach Attributed to Chinese State-Linked Hackers

    Written by
    The Editorial Team
    07.24.25
    Cyber stability
    01
    MIN
    Microsoft SharePoint Breach Attributed to Chinese State-Linked Hackers
    Microsoft SharePoint Breach Attributed to Chinese State-Linked Hackers
    Microsoft SharePoint Breach Attributed to Chinese State-Linked Hackers
    Image Ukrainian Hacktivist Group Silent Crow Claims Cyberattack on Russian Airline Aeroflot
    Cyber stability
    07.29.25 Cyber stability
    Next article
    Ukrainian Hacktivist Group Silent Crow Claims Cyberattack on Russian Airline Aeroflot
    Read
    01
    MIN
    Image Europol Dismantles Infrastructure of Pro-Russian Hacktivist Group NoName057(16)
    Cyber stability
    07.21.25 Cyber stability
    Next article
    Europol Dismantles Infrastructure of Pro-Russian Hacktivist Group NoName057(16)
    Read
    01
    MIN
    Image France officially accuses Russia of cyberattacks on its institutions
    Cyber stability
    04.30.25 Cyber stability
    Next article
    France officially accuses Russia of cyberattacks on its institutions
    Read
    01
    MIN
    Image Between tech and Trump: a Love-Hate relationship
    Cyber stability
    04.29.25 Cyber stability
    Next article
    Between tech and Trump: a Love-Hate relationship
    Read
    07
    MIN
    Two advanced persistent threat groups exploited zero-day flaws to steal encryption keys and sensitive data from critical organizations.

    On July 22, 2025, Microsoft attributed a large-scale espionage campaign targeting its SharePoint platform to two Chinese state-affiliated threat actors: Linen Typhoon and Violet Typhoon. According to a July 18 report from Eye Security, the attackers exploited two previously unknown zero-day vulnerabilities in on-premise deployments of SharePoint — dubbed the ToolShell flaws — which cannot be patched remotely.

    The campaign primarily targeted critical organizations across Europe and North America. According to Check Point, nearly half of the victims were government entities handling sensitive data, whose compromise could have serious economic or geopolitical repercussions.

    The attackers reportedly stole encryption keys, potentially allowing them to impersonate legitimate users of targeted platforms — even after security patches are applied. These findings underscore the growing sophistication and geopolitical implications of cyber operations attributed to Beijing.

    The Editorial Team
    07.24.25
    Articles by the same author:
    1
    08.01.25 Cybercrime
    U.S., Canada, and Australia Update Warning on Scattered Spider Cybercrime Group
    Read
    01
    MIN
    2
    08.01.25 Cyber stability
    Russia: Cyberattack Forces Closure of Hundreds of Pharmacies
    Read
    01
    MIN
    3
    08.01.25 Cybersecurity
    CyberArk Accepts $25 Billion Acquisition Offer from Palo Alto Networks
    Read
    01
    MIN
    4
    08.01.25 Cyber stability
    U.S. Sanctions Three North Korean Officials Behind IT Worker Farms
    Read
    01
    MIN
    Image Ukrainian Hacktivist Group Silent Crow Claims Cyberattack on Russian Airline Aeroflot
    Cyber stability
    07.29.25 Cyber stability
    Next article
    Ukrainian Hacktivist Group Silent Crow Claims Cyberattack on Russian Airline Aeroflot
    Read
    01
    MIN
    Image Europol Dismantles Infrastructure of Pro-Russian Hacktivist Group NoName057(16)
    Cyber stability
    07.21.25 Cyber stability
    Next article
    Europol Dismantles Infrastructure of Pro-Russian Hacktivist Group NoName057(16)
    Read
    01
    MIN
    Image France officially accuses Russia of cyberattacks on its institutions
    Cyber stability
    04.30.25 Cyber stability
    Next article
    France officially accuses Russia of cyberattacks on its institutions
    Read
    01
    MIN
    Image Between tech and Trump: a Love-Hate relationship
    Cyber stability
    04.29.25 Cyber stability
    Next article
    Between tech and Trump: a Love-Hate relationship
    Read
    07
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.