According to reports, Microsoft has issued an alert about "active attacks" on server software used by government agencies and businesses to share documents within organizations, and it recommended security updates that customers should apply immediately.

The FBI states that it is aware of the attacks and is collaborating closely with its federal and private-sector partners.

In an alert released, Microsoft stated that the vulnerabilities affect only SharePoint servers utilized within companies. It was reported that SharePoint Online within Microsoft 365, hosted in the cloud, was unaffected by the attacks.

The Washington Post, which initially disclosed the hacks, stated that unknown individuals in recent days had taken advantage of a vulnerability to carry out an attack aimed at U.S. and global agencies and companies.

Also Read: Gemini Ultra, Veo 3, Stitch and More Highlights from Google I/O 2025

The breach is referred to as a "zero day" attack since it exploited an undisclosed vulnerability, the newspaper reported, citing experts. Countless servers faced potential threats.

In the alert, Microsoft said that a vulnerability "allows an authorized attacker to perform spoofing over a network."

It issued recommendations to stop the attackers from exploiting it.

In a spoofing attack, an actor can manipulate financial markets or agencies by hiding the actor's identity and appearing to be a trusted person, organization or website.

Microsoft has issued a security update for SharePoint Subscription Edition, which it said customers should apply immediately.

Also Read: AI Appreciation Day: From Innovation to Transformation

It said it is working on updates to 2016 and 2019 versions of SharePoint. If customers cannot enable recommended malware protection, they should disconnect their servers from the internet until a security update is available, it said.