India, July 22 -- Security researchers at Microsoft and Google's Mandiant unit have confirmed that multiple China-backed hacking groups are actively exploiting a severe zero-day vulnerability in self-hosted Microsoft SharePoint servers.
The flaw, discovered last weekend, enables attackers to steal private keys, deploy malware remotely, and gain deep access to sensitive data across corporate networks.
Microsoft has attributed the attacks to three China-linked groups Linen Typhoon, Violet Typhoon, and Storm-2603. Linen Typhoon specializes in intellectual property theft, while Violet Typhoon focuses on espionage. Storm-2603, which remains less understood, has previously been tied to ransomware operations. Evidence shows the vulnerability has...