US Nuclear Weapons Agency 'Among 400 Organizations Breached By Chinese Hackers'

A significant cyber-espionage campaign, exploiting vulnerabilities in Microsoft SharePoint, has compromised nearly 400 organizations globally. Eye Security, a Dutch cybersecurity firm, identified the attack, noting the number of victims has quadrupled since initial reports. The actual number of affected organizations is likely higher due to the stealthy nature of the attacks. Three Chinese state-sponsored groups, Linen Typhoon, Violet Typhoon, and Storm-2603, are responsible. The attackers stole credentials and remotely executed malicious code on on-premises SharePoint servers. The campaign began on July 7th and was discovered on July 18th. High-profile victims include US government agencies like the National Nuclear Security Administration, Energy Department, and Education Department. Other victims span various sectors and countries, encompassing European and Middle Eastern governments. This widespread attack highlights the critical need for timely patching of software vulnerabilities.