Microsoft said on Tuesday that it has observed Beijing-backed hackers exploiting widespread attacks against organizations using collaboration software from the tech giant.
“As of this writing, Microsoft has observed two named Chinese nation-state actors, Linen Typhoon and Violet Typhoon, exploiting these vulnerabilities targeting internet-facing SharePoint servers,” the Redmond, Washington-based company said in a blog post on Tuesday.
It added that “another China-based threat actor, tracked as Storm-2603,” was seen exploiting vulnerabilities in its SharePoint software, which is widely used to coordinate work on projects, documents, and other business.
“With the rapid adoption of these exploits, Microsoft assesses with high confidence that threat actors will continue to integrate them into their attacks against unpatched on-premises SharePoint systems,” Microsoft added….