Cybersecurity Today Sharepoint Hack Reaches Crisis Level and more: Cybersecurity Today for July 25, 2025
Jul 25, 2025
A critical vulnerability in Microsoft's SharePoint server has triggered widespread data breaches, affecting multiple organizations, including federal agencies. The conversation also shifts to a China-linked threat group pivoting from espionage to ransomware, increasing the urgency for security measures. Additionally, Mitel faces a significant incident due to unpatched systems, while Clorox is embroiled in legal action against Cognizant over security missteps. The trend of phishing attacks targeting NPM packages raises further concerns in the cybersecurity landscape.
AI Snips
Chapters
Transcript
Episode notes
SharePoint Vulnerability Risks Worsen
- The SharePoint vulnerability affects unpatched, internet-exposed on-premise servers, posing large-scale risks.
- Attackers now use it for ransomware, marking a shift from espionage to disruptive cyber operations.
Secure Mitel MyVoice MX1 Quickly
- Patch Mitel MyVoice MX1 immediately and keep access restricted to trusted internal networks.
- Avoid exposing these communications platforms to the internet due to their critical vulnerabilities.
Clorox Breach From Help Desk Lapse
- Clorox's IT provider reset passwords and MFA without identity checks, enabling twice the attacker access.
- This led to operational shutdowns with damages sought up to $380 million in a high-profile lawsuit.