Microsoft has pointed the finger at three Chinese nation-state actors for exploiting the SharePoint vulnerabilities. Here's what we know about the security flaws and how to guard against future attacks.

Microsoft has issued an emergency fix in its SharePoint software after hackers began exploiting a vulnerability to carry out widespread cyberattacks. On Saturday, the company issued an alert saying organizations using the software should apply security updates immediately. SharePoint Online in Microsoft 365 was not hit by the attacks.

NEW YORK (AP) — Microsoft has issued an emergency fix to close off a vulnerability in Microsoft’s SharePoint software that hackers have exploited to carry out widespread attacks on businesses and at least some federal agencies.

Multiple hacking groups—including state actors from China—have targeted a vulnerability in older, on-premises versions of the file-sharing tool after a flawed attempt to patch it.

Microsoft has released a critical patch for a security flaw in its SharePoint software. Hackers actively exploited this vulnerability, targeting businesses and US government agencies. The company issued the fix between July 19 and 20.

To secure the endpoints, Microsoft recommends applying the July 2025 security updates immediately, as well as enabling Antimalware Scan Interface (AMSI) for SharePoint and making sure Defender Antivirus is deployed.

Microsoft has issued an emergency fix for SharePoint software due to a zero-day vulnerability. Hackers exploited this flaw, affecting businesses and possibly U.S. government agencies. Known as 'ToolShell,