Editorial & Advertiser disclosure

Global Banking & Finance Review® is an online platform offering news, analysis, and opinion on the latest trends, developments, and innovations in the banking and finance industry worldwide. The platform covers a diverse range of topics, including banking, insurance, investment, wealth management, fintech, and regulatory issues. The website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.

Finance

Microsoft alerts businesses, governments to server software attack

Published by Global Banking & Finance Review

Posted on July 21, 2025

2 min read

· Last updated: January 22, 2026

Add as preferred source on Google

Microsoft alerts businesses, governments to server software attack

cybersecurity security technology customers recommendations

Global Banking & Finance Awards 2026 — Call for Entries

WASHINGTON (Reuters) -Microsoft has issued an alert about "active attacks" on server software used by government agencies and businesses to share documents within organizations, and recommended

Microsoft Warns of Active Attacks on Server Software Used by Businesses

WASHINGTON (Reuters) -Microsoft has issued an alert about "active attacks" on server software used by government agencies and businesses to share documents within organizations, and recommended security updates that customers should apply immediately.

The FBI said on Sunday it is aware of the attacks and is working closely with its federal and private-sector partners, but offered no other details.

In an alert issued on Saturday, Microsoft said the vulnerabilities apply only to SharePoint servers used within organizations. It said that SharePoint Online in Microsoft 365, which is in the cloud, was not hit by the attacks.

"We've been coordinating closely with CISA, DOD Cyber Defense Command and key cybersecurity partners globally throughout our response," a Microsoft spokesperson said, adding that the company had issued security updates and urged customers to install them immediately.

The Washington Post, which first reported the hacks, said unidentified actors in the past few days had exploited a flaw to launch an attack that targeted U.S. and international agencies and businesses.

The hack is known as a "zero day" attack because it targeted a previously unknown vulnerability, the newspaper said, quoting experts. Tens of thousands of servers were at risk.

In the alert, Microsoft said that a vulnerability "allows an authorized attacker to perform spoofing over a network." It issued recommendations to stop the attackers from exploiting it.

In a spoofing attack, an actor can manipulate financial markets or agencies by hiding the actor's identity and appearing to be a trusted person, organization or website.

Earlier, Microsoft said it is working on updates to 2016 and 2019 versions of SharePoint. If customers cannot enable recommended malware protection, they should disconnect their servers from the internet until a security update is available, it added.

(Reporting by Timothy Gardner in Washington; Editing by Frank McGurty, Leslie Adler and Lincoln Feast.)

Key Takeaways

Microsoft warns of active attacks on server software.
The attacks target SharePoint servers used by organizations.
A zero day vulnerability is being exploited.
Microsoft collaborates with global cybersecurity partners.
Immediate security updates are recommended.

Frequently Asked Questions

What type of attack is Microsoft alerting businesses about?

Microsoft has issued an alert about active attacks on server software, specifically targeting SharePoint servers used by organizations.

What is a zero day attack?

A zero day attack targets a previously unknown vulnerability, which in this case has put tens of thousands of servers at risk.

What should organizations do to protect against these attacks?

Microsoft recommends enabling malware protection and disconnecting affected servers from the internet if protection cannot be enabled.

Who is collaborating with Microsoft on this issue?

Microsoft is coordinating closely with CISA, DOD Cyber Defense Command, and key cybersecurity partners globally.

What is the nature of the vulnerability mentioned in the alert?

The vulnerability allows an authorized attacker to perform spoofing over a network, potentially manipulating financial markets or agencies.

More from Finance

Explore more articles in the Finance category

Close Brothers will not take legal action against Britain's car finance redress scheme, Sky News reports

Germany's far-right AfD rises to record 28%, INSA poll shows

German government suspects Russia of Signal attack targeting politicians, sources say

Romania finds parts of second drone after overnight Russian attack on Ukraine

China condemns EU's inclusion of Chinese entities in sanctions package against Russia

Russian parliament speaker in North Korea to mark Pyongyang's troop deployment in Ukraine war

Macron reaffirms efforts to reopen Strait of Hormuz, as TotalEnergies warns of energy shortages

France's Macron says EU mutual assistance clause is unambiguous

US to let Venezuela pay Maduro's lawyer in drug trafficking case

Italy votes down equal parental leave while fathers redefine their role online

German auto industry faces even tougher competition as China economy slows

Romania says drone fragments damage property during overnight Russian attack on Ukraine

View All Finance Posts

Microsoft alerts businesses, governments to server software attack

Microsoft Warns of Active Attacks on Server Software Used by Businesses

Key Takeaways

Frequently Asked Questions

Tags

Related Articles

Trump tells Fox News Iran can call US if it wants to negotiate

Australia's Wong to visit Japan, China, South Korea to discuss energy security

Hungary's Magyar to meet EU's von der Leyen for talks on EU funds this week

Switzerland angers Italy by claiming costs of treating Crans-Montana fire victims

Russian defence minister visits North Korea

Fertiliser plant in Russia's Vologda region damaged in Ukrainian drone attack, governor says

More from Finance

Microsoft alerts businesses, governments to server software attack

Microsoft Warns of Active Attacks on Server Software Used by Businesses

Key Takeaways

Frequently Asked Questions

Tags

Related Articles

Trump tells Fox News Iran can call US if it wants to negotiate

Australia's Wong to visit Japan, China, South Korea to discuss energy security

Hungary's Magyar to meet EU's von der ​Leyen for talks on EU funds this week

Switzerland angers Italy by claiming costs of treating Crans-Montana fire victims

Russian defence minister visits North Korea

Fertiliser plant in Russia's Vologda region damaged in Ukrainian drone attack, governor says

More from Finance

Hungary's Magyar to meet EU's von der Leyen for talks on EU funds this week