skip to main content

Firms urged to apply updates after SharePoint server attack

The firm has since issued updates, and companies are encouraged to apply them
The firm has since issued updates, and companies are encouraged to apply them

Businesses that use Microsoft's SharePoint have been urged to download and apply updates to close a potential gap in security, following a global cyber attack.

SharePoint is a product provided by Microsoft that allows organisations to share documents among their user base - it is a platform to share information within a company.

A global attack on the server software, which is used by thousands of businesses and government agencies, was detected over the weekend.

Microsoft issued an alert about "active attacks" on SharePoint servers on Saturday.

The firm has since issued updates, and companies are encouraged to apply them.

Cyber security expert, Brian Honan, said, "As of midnight last night, Microsoft issued updates to the SharePoint software that companies can download and apply to close this hole in the security, and have also provided advice on to detect if you have been affected."

We need your consent to load this rte-player contentWe use rte-player to manage extra content that can set cookies on your device and collect data about your activity. Please review their details and accept them to load the content.Manage Preferences

"If your company is using SharePoint and it is exposed to the internet in some way in order to share documents with staff working remotely for example, that you download these updates, apply them urgently and follow the guidance to check to see if you have been compromised."

Speaking on Morning Ireland, Mr Honan said, "It was an unknown bug that we believe state-sponsored attackers were using to gain access to US government servers running SharePoint".

It is not known what actor was behind the attack.

"We don't know yet, but potentially Chinese government spies," he added.