Search
00
GBAF Logo
trophy
Top StoriesInterviewsBusinessFinanceBankingTechnologyInvestingTradingVideosAwardsMagazinesHeadlinesTrends

Subscribe to our newsletter

Get the latest news and updates from our team.

Global Banking & Finance Review®

Global Banking & Finance Review® - Subscribe to our newsletter

Company

    GBAF Logo
    • About Us
    • Profile
    • Privacy & Cookie Policy
    • Terms of Use
    • Contact Us
    • Advertising
    • Submit Post
    • Latest News
    • Research Reports
    • Press Release
    • Awards▾
      • About the Awards
      • Awards TimeTable
      • Submit Nominations
      • Testimonials
      • Media Room
      • Award Winners
      • FAQ
    • Magazines▾
      • Global Banking & Finance Review Magazine Issue 79
      • Global Banking & Finance Review Magazine Issue 78
      • Global Banking & Finance Review Magazine Issue 77
      • Global Banking & Finance Review Magazine Issue 76
      • Global Banking & Finance Review Magazine Issue 75
      • Global Banking & Finance Review Magazine Issue 73
      • Global Banking & Finance Review Magazine Issue 71
      • Global Banking & Finance Review Magazine Issue 70
      • Global Banking & Finance Review Magazine Issue 69
      • Global Banking & Finance Review Magazine Issue 66
    Top StoriesInterviewsBusinessFinanceBankingTechnologyInvestingTradingVideosAwardsMagazinesHeadlinesTrends

    Global Banking & Finance Review® is a leading financial portal and online magazine offering News, Analysis, Opinion, Reviews, Interviews & Videos from the world of Banking, Finance, Business, Trading, Technology, Investing, Brokerage, Foreign Exchange, Tax & Legal, Islamic Finance, Asset & Wealth Management.
    Copyright © 2010-2026 GBAF Publications Ltd - All Rights Reserved. | Sitemap | Tags | Developed By eCorpIT

    Editorial & Advertiser disclosure

    Global Banking & Finance Review® is an online platform offering news, analysis, and opinion on the latest trends, developments, and innovations in the banking and finance industry worldwide. The platform covers a diverse range of topics, including banking, insurance, investment, wealth management, fintech, and regulatory issues. The website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.

    Home > Headlines > Microsoft server hack hit about 100 organizations, researchers say
    Headlines

    Microsoft server hack hit about 100 organizations, researchers say

    Published by Global Banking & Finance Review®

    Posted on July 21, 2025

    3 min read

    Last updated: January 22, 2026

    Microsoft server hack hit about 100 organizations, researchers say - Headlines news and analysis from Global Banking & Finance Review
    Why waste money on news and opinion when you can access them for free?

    Take advantage of our newsletter subscription and stay informed on the go!

    Subscribe

    Tags:cybersecurityfinancial servicestechnology

    Quick Summary

    A cyber espionage operation has compromised Microsoft server software, affecting about 100 organizations. The attack exploits a zero-day vulnerability in SharePoint servers.

    Cyber Espionage Targets Microsoft Servers, Affecting Around 100 Organizations

    By James Pearson and Raphael Satter

    WASHINGTON/LONDON (Reuters) - A sweeping cyber espionage operation targeting Microsoft server software compromised about 100 different organizations as of the weekend, two of the organizations that helped uncover the campaign said on Monday.

    Microsoft on Saturday issued an alert about "active attacks" on self-hosted SharePoint servers, which are widely used by organizations to share documents and collaborate within organisations. SharePoint instances run off of Microsoft servers were unaffected.

    Dubbed a "zero-day" because it leverages a previously undisclosed digital weakness, the hacks allow spies to penetrate vulnerable servers and potentially drop a backdoor to secure continuous access to victim organizations.

    Vaisha Bernard, the chief hacker at Eye Security, a Netherlands-based cybersecurity firm, which discovered the hacking campaign targeting one of its clients on Friday, said that an internet scan carried out with the Shadowserver Foundation had uncovered nearly 100 victims altogether - and that was before the technique behind the hack was widely known.

    "It's unambiguous," Bernard said. "Who knows what other adversaries have done since to place other backdoors."

    He declined to identify the affected organizations, saying that the relevant national authorities had been notified.

    The Shadowserver Foundation confirmed the 100 figure and said that most of those affected were in the United States and Germany and that the victims included government organizations.

    Another researcher said that, so far, the spying appeared to be the work of a single hacker or set of hackers.    

    "It's possible that this will quickly change," said Rafe Pilling, director of Threat Intelligence at Sophos, a British cybersecurity firm.

    Microsoft said it had "provided security updates and encourages customers to install them," a company spokesperson said in an emailed statement.

    It was not clear who was behind the ongoing hack. The FBI said on Sunday it was aware of the attacks and was working closely with its federal and private-sector partners, but offered no other details. Britain's National Cyber Security Center said in a statement that it was aware of "a limited number" of targets in the United Kingdom. A researcher tracking the campaign said that the campaign appeared initially aimed at a narrow set of government-related organizations.

    The pool of potential targets remains vast. According to data from Shodan, a search engine that helps to identify internet-linked equipment, over 8,000 servers online could theoretically have already been compromised by hackers.

    Those servers include major industrial firms, banks, auditors, healthcare companies, and several U.S. state-level and international government entities. 

    "The SharePoint incident appears to have created a broad level of compromise across a range of servers globally," said Daniel Card of British cybersecurity consultancy, PwnDefend. 

    "Taking an assumed breach approach is wise, and it's also important to understand that just applying the patch isn't all that is required here."

    (Reporting by James Pearson and Raphael Satter, Editing by Nick Zieminski and Marguerita Choy)

    Key Takeaways

    • •Cyber espionage operation targets Microsoft servers.
    • •Around 100 organizations affected by the hack.
    • •Hack leverages a zero-day vulnerability in SharePoint.
    • •Most victims are in the US and Germany.
    • •Microsoft has issued security updates to mitigate the threat.

    Frequently Asked Questions about Microsoft server hack hit about 100 organizations, researchers say

    1What organizations were affected by the Microsoft server hack?

    About 100 different organizations were compromised, including government entities, primarily in the United States and Germany.

    2What type of vulnerability was exploited in the attack?

    The attack utilized a 'zero-day' exploit, which takes advantage of a previously undisclosed digital weakness in Microsoft server software.

    3What actions has Microsoft taken in response to the hack?

    Microsoft has issued security updates and is encouraging customers to install them to protect against the ongoing attacks.

    4Who is investigating the cyber attacks?

    The FBI is aware of the attacks and is working closely with federal and private-sector partners to investigate the situation.

    5What is the potential scale of the threat posed by this hack?

    There are over 8,000 servers online that could potentially be vulnerable, indicating a vast pool of possible targets for cyber espionage.

    More from Headlines

    Explore more articles in the Headlines category

    Image for Orsted Q4 core profit slightly lags forecast
    Orsted Q4 core profit slightly lags forecast
    Image for Hungary's deficit to be around 5% of GDP this year and next, Orban says
    Hungary's deficit to be around 5% of GDP this year and next, Orban says
    Image for Germany's Merz to visit Washington in March, Die Welt reports
    Germany's Merz to visit Washington in March, Die Welt reports
    Image for In Hasina’s hometown in Bangladesh, voters face an unfamiliar ballot
    In Hasina’s hometown in Bangladesh, voters face an unfamiliar ballot
    Image for SocGen lifts profit target as retail bank offsets trading drop
    SocGen lifts profit target as retail bank offsets trading drop
    Image for Germany's PNE loses bid for Vietnam wind project, in new blow to foreign investors
    Germany's PNE loses bid for Vietnam wind project, in new blow to foreign investors
    Image for Iran, US to negotiate in Oman amid deep rifts and mounting war fears
    Iran, US to negotiate in Oman amid deep rifts and mounting war fears
    Image for Oil set for first weekly decline in seven weeks ahead of US-Iran talks
    Oil set for first weekly decline in seven weeks ahead of US-Iran talks
    Image for Britain expects Arctic security plans to be discussed by NATO next week
    Britain expects Arctic security plans to be discussed by NATO next week
    Image for Thai PM Anutin's gamble on nationalism to be tested in close election
    Thai PM Anutin's gamble on nationalism to be tested in close election
    Image for Ukrainian shelling causes 'serious damage' in Russia's Belgorod, governor says
    Ukrainian shelling causes 'serious damage' in Russia's Belgorod, governor says
    Image for Treasury's Bessent says further Russian sanctions depend on peace talks
    Treasury's Bessent says further Russian sanctions depend on peace talks
    View All Headlines Posts
    Previous Headlines PostMerz rejects reported EU plan to force rental firms to buy EVs from 2030
    Next Headlines PostUK and ChatGPT maker OpenAI sign new strategic partnership