07/22/2025July 22, 2025
Germany among countries targeted by SharePoint hacking operation
Internet security experts say there have been dozens of on self-hosted servers using ‘s SharePoint software, affecting several organizations, including government bodies, mostly in Germany and the US.
The SharePoint servers are widely used by organizations, including government bodies, major industrial firms, banks, auditors and health care companies, for the internal sharing of documents and to facilitate collaboration.
Security researchers warn that the hacking operation, reportedly known as “ToolShell,” is a serious one and can allow actors to fully access SharePoint file systems, including services connected to SharePoint, such as Teams and OneDrive.
The hack allows the perpetrators to potentially drop a so-called backdoor to give them continuous access to victim organizations.
Microsoft said it had “provided security updates and encourages customers to install them,” a company spokesperson said in an emailed statement.
It said the vulnerability affects only on-site SharePoint servers used within businesses or organizations and not Microsoft’s cloud-based SharePoint Online service.
Eye Security, a Netherlands-based cybersecurity firm that helped uncover the operation, has declined to to identify the affected organizations, but saidthe relevant national authorities had been notified.
The post Germany updates: EU ministers to talk migration in Denmark appeared first on Deutsche Welle.
