A cyber-espionage campaign centered on vulnerable versions of Microsoft’s server software has claimed around 400 victims, according to researchers at Netherlands-based Eye Security. The attack is believed to have started after Microsoft failed to fully patch a security hole in its SharePoint server software.
Eye Security says the figure of 400 victims is likely an undercount, as not all attack vectors have left digital artifacts that can be scanned for. Vaisha Bernard, chief hacker at Eye Security, stated that there are many more victims, but their details have yet to be fully disclosed.
One organization affected by the hack is the National Institutes of Health, which confirmed one of its servers had been compromised and took steps to isolate additional servers as a precaution. The hack is linked to Chinese hackers, although Beijing has denied this claim.
Source: https://www.reuters.com/sustainability/boards-policy-regulation/microsoft-server-hack-has-now-hit-400-victims-researchers-say-2025-07-23