Yikes: Hackers are exploiting a newly discovered vulnerability in Microsoft’s SharePoint software to access servers run by companies and government agencies. On Saturday, Microsoft warned of "active attacks" on customers running internal SharePoint servers. The good news is that SharePoint Online in Microsoft 365 is not affected. Still, the "zero-day" vulnerability is raising fears about a widespread breach, given that over 200,000 organizations use SharePoint. According to The Washington Post, at least two federal agencies have already had their servers compromised. Security researchers at Eye Security initially discovered the hacking activity, writing on Saturday: “We discovered dozens of systems actively compromised during two waves of attack, on 18th of July around 18:00 UTC and 19th of July around 07:30 UTC.” The high-severity flaw, classified as CVE-2025-53770, can lead to what’s called “remote code execution” over a SharePoint Server, allowing hackers to execute rogue co...