URGENT UPDATE: A significant cyberattack has compromised the U.S. National Nuclear Security Administration (NNSA), according to new reports from the Department of Energy (DoE). The breach exploited a vulnerability in Microsoft’s SharePoint document software, affecting systems as of July 18, 2023.
This alarming incident comes amid rising tensions around cybersecurity, particularly regarding state-sponsored hacking from China. As of now, officials confirm that no sensitive classified information has been reported stolen, but the breach has impacted at least 400 victims globally, according to Eye Security.
The DoE has stated that the exploitation affected its systems, although it primarily operates on cloud technology, limiting the impact to a “very small number of systems.” All affected systems are currently being restored, officials say.
Microsoft has flagged that Chinese state-sponsored actors are behind the attack, specifically groups known as Linen Typhoon and Violet Typhoon. The company warned that flaws in SharePoint’s software have been exploited across various institutions worldwide. In addition, another hacking group, Storm-2603, has also taken advantage of these vulnerabilities.
Chinese officials responded to the allegations, with foreign ministry spokesperson Guo Jiakun stating, “China opposes and fights hacking activities in accordance with the law.” He urged against smear campaigns targeting China under the guise of cybersecurity concerns.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) acknowledged being aware of the ongoing exploitation of the SharePoint vulnerability. Experts are raising alarms about the implications of such breaches on national security and the potential for increased espionage activities.
In a related development, Microsoft CEO Satya Nadella has emphasized the company’s commitment to cybersecurity, especially after previous breaches raised concerns over the handling of sensitive government communications. Microsoft has announced plans to cease employing engineers based in China for technical support on Defense Department projects, a move aimed at mitigating vulnerabilities exposed by recent reports.
As investigations continue, authorities urge companies and organizations to bolster their cybersecurity measures. The implications of this breach extend beyond national security, raising questions about the safety of sensitive data across multiple sectors.
Stay tuned for more updates as this story develops. The urgency surrounding these breaches underscores a critical need for heightened vigilance in cybersecurity practices.
