Microsoft’s SharePoint is being hacked by cyberattackers, FBI and CSE warn
Global News
Microsoft issued an alert on Saturday that said the server software being targeted is used by government agencies and businesses to share documents within their organizations.
Canada’s cybersecurity agency is issuing an alert over attacks it says are impacting Microsoft SharePoint servers, with a warning for organizations to act now to protect their information.
Microsoft issued an alert on Saturday that said the server software being targeted is used by government agencies and businesses to share documents within their organizations.
The company advised that security updates should be applied immediately.
The Cyber Centre is also urging companies to take various actions to reduce risks, including checking for a specific file in their servers.
“The Cyber Centre is aware of exploitation happening in Canada,” the Canadian Centre for Cyber Security wrote in a vulnerability alert.
“CVE-2025-53770 involves a deserialization of untrusted data in on-premises Microsoft SharePoint Servers allowing an unauthorised attacker to execute code over a network.”
Those who use SharePoint Online in Microsoft 365, which is in the cloud, have not been impacted.
Global News has reached out to the federal government and Communications Security Establishment Canada to inquire if any departments have been impacted.
The milestone deal with Ottawa signed earlier this week clears regulatory hurdles for a potential pipeline from Alberta to the West Coast.
Canadian veterinarians are sounding the alarm about their loss of access to about 40 per cent of medications they once were able to use and they are blaming Health Canada.