Microsoft SharePoint Servers Are Under Attack (zdnet.com) 37
Hacker groups are attacking Microsoft SharePoint servers to exploit a recently patched vulnerability and gain access to corporate and government networks, according to recent security advisories sent out by Canadian and Saudi Arabian cyber-security agencies. From a report: The security flaw exploited in these attacks is tracked as CVE-2019-0604, which Microsoft patched through security updates released in February, March, and April this year. "An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the SharePoint application pool and the SharePoint server farm account," Microsoft said at the time.
Why are they on the Internet? (Score:1)
Excuse my cluelessness regarding "SharePoint", bit shouldn't a corporate server be on a secured intranet with only local and VPN access from secured corporate devices?
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
A better question is why anybody is running a server of ANY sort and not bothering to apply security patches?
1. Because Linux shits itself when you try to patch it.
2. Because now even Windows 10 shits itself when you try to patch it, though slightly less often than Linux. Are you not aware of the "An Open Letter to Microsoft About Poor Windows 10 Update Experiences" document?
That's not an exhaustive list of course. Mission critical stuff breaking on patch generally means patches are applied far more reluctantly.
Need more information. (Score:4, Insightful)
Are SharePoint servers actually under attack or are people just trying to use them? :-)
Re: (Score:1)
I think it's just Karen in HR trying to sync the annual reviews.
Fuck Karen.
Re: (Score:2)
It's high time to toss out those lame proprietary servers and replace them with machines running GNU plus LINUX!
GNU plus LINUX is a WINNING COMBINATION, for with Free Software you have FREEDOM!
Sorry Mr. President, that may actually be too much WINNING and FREEDOM for my heart to handle at this point ... :-)
Not a viable attack in the real world. (Score:5, Funny)
Luckily, even after gaining access to the systems, no hacker has yet been able to make heads or tails of the Sharepoint user interface.
Because of this, no sensitive information has been actually extracted from the hacked servers, and the risk remains theoretical.
Re: (Score:1)
Luckily, even after gaining access to the systems, no hacker has yet been able to make heads or tails of the Sharepoint user interface.
Because of this, no sensitive information has been actually extracted from the hacked servers, and the risk remains theoretical.
Yes, because most legitimate, authorized users of sharepoint can't usually get any information out.
Re: (Score:2)
Yes, because most legitimate, authorized users of sharepoint can't usually get any information out.
Thanks, Captain Obvious!
Re: (Score:1)
You do need to wonder (Score:2)
what kind of moron has a sharepoint server available to the Internet without tons of extra security like an encrypted tunnel and TFA...
Re:You do need to wonder (Score:4, Interesting)
what kind of moron has a sharepoint server available to the Internet without tons of extra security like an encrypted tunnel and TFA...
what kind of moron has a sharepoint server ?
There. FTFY.
Re: (Score:2)
Had nothing to do with the security of the server, shithead. Had to do with the uselessness of Sharepoint in general.
Re: (Score:3)
For example https://glenview.il.us/Pages/D... [glenview.il.us] and https://music.depaul.edu/Pages... [depaul.edu] are both built on Sharepoint but most people would never know.
LOL, someone just asked me... (Score:2)
LOL, someone just asked me if I would do some Sharepoint scripting for them.
I asked them, "Why? What did I ever do to you??"
Re: (Score:1)
LOL, someone just asked me if I would do some Sharepoint scripting for them.
I asked them, "Why? What did I ever do to you??"
Recent versions allow running your own ReactJS apps and using their APIs to your heart's content. They even have some SDK libs to help get the ball rolling... so a LOT has changed with SharePoint since the wee-early days of "SharePoint Scripting"
This is stupid on thousands of levels. (Score:1)
And expository.
Since Microsoft is closed source there would be no way for government to ever ensure their conferences were secure.
This means Microsoft is "trusted" which means Microsoft's antitrust suit back in the days ended up with them playing ball.
Windows 19 we know is all kinds of spyware and basically spyware is feature #1. We also know they backported and updated 7,8,8.1 all to spyware feature #1 too. Again, closed source you can only limit so much.
Then you have "canada and saudi arabia" security fir
Re: (Score:2)