Risky Bulletin Risky Bulletin: Three Chinese APTs are behind the SharePoint zero-day attacks
Jul 22, 2025
Three Chinese APTs are reportedly behind recent zero-day attacks on Microsoft SharePoint. The UK government is looking to prohibit ransom payments in the public sector. Meanwhile, Russia successfully dismantled a malware operation, showcasing their efforts against cybercrime. In South Korea, airline employees face charges for selling celebrity data, raising serious data privacy concerns. The podcast delves into the evolving landscape of cybersecurity and the global reactions to these critical incidents.
AI Snips
Chapters
Transcript
Episode notes
Chinese APTs Exploit SharePoint Zero-Day
- Three Chinese-linked APT groups exploited a zero-day vulnerability in Microsoft SharePoint before a patch was released.
- Some breached servers belonged to US federal and state agencies, highlighting significant impact.
UK Targets Ransomware Payments
- UK law proposes banning public sector from paying ransomware gangs to reduce crime funding.
- All organizations must report ransomware incidents to aid law enforcement.
Russia Disrupts Malware Service
- Russia's National Domain Registrar removed over 100 domains from a malware-as-a-service operation.
- The takedown followed misuse of the service to target Russian citizens.