A cyber security vulnerability in Microsoft's SharePoint collaboration software has been added to the US Cybersecurity and Infrastructure Security Agency exploitation list as customers deal with the potential fallout.
Computer security experts say hackers have exploited the loophole and potentially compromised private and public computer networks in the US.
The individual or group behind the software exploitation is not yet known.
“The incident reveals the growing sophistication of threat actors who have gained internal access to an environment and can now leverage existing resources (like Microsoft Exchange, SharePoint,) to conduct nefarious missions beyond just ransomware attacks, like 'wiper' malware that deletes data,” said Morey Haber, a chief security adviser at cyber security company BeyondTrust.
Mr Haber said Microsoft appears to have responded quickly once the vulnerability to Sharepoint was identified, but that for some, it might be too little, too late.
“Considering the speed of exploitation, some organisations may be waking up Monday morning to a fresh series of attacks,” he explained.
The various editions of Microsoft Sharepoint are also making it more difficult to provide a one-size-fits-all solution.
Microsoft said that it released a security update for SharePoint 2019, and that other fixes would be on the way.
“We are actively working on updates for SharePoint 2016,” the Redmond, Washington software company posted on X.
Santiago Pontiroli, lead researcher at cyber protection company Acronis, said: “This incident continues a trend of high-impact attacks against Microsoft infrastructure, including the Exchange mass exploitation in 2021 and the 2023 cloud email breach.
“Over the past several years, state-aligned and advanced persistent threat groups have repeatedly abused vulnerabilities in Microsoft platforms to gain initial access, steal sensitive data, and establish long-term footholds in enterprise networks.”
Microsoft does, however, invest heavily in trying to prevent such breaches from occurring.
Federal law enforcement agencies regularly work with the company and have a presence at its cyber crime centre in Redmond.
Cyber security is a continuing game of "whack-a-Mole", and that companies and organisations using Sharepoint should take it seriously," Mr Pontiroli said.
“Organisations still running on-premises SharePoint need to act now,” he said. “Apply the latest updates, monitor for signs of compromise, and assume exposure if systems were only partially patched.”
Like a Fading Shadow
Antonio Muñoz Molina
Translated from the Spanish by Camilo A. Ramirez
Tuskar Rock Press (pp. 310)
Company%20Profile
%3Cp%3E%3Cstrong%3ECompany%20name%3A%3C%2Fstrong%3E%20myZoi%3Cbr%3E%3Cstrong%3EStarted%3A%3C%2Fstrong%3E%202021%3Cbr%3E%3Cstrong%3EFounders%3A%3C%2Fstrong%3E%20Syed%20Ali%2C%20Christian%20Buchholz%2C%20Shanawaz%20Rouf%2C%20Arsalan%20Siddiqui%2C%20Nabid%20Hassan%3Cbr%3E%3Cstrong%3EBased%3A%3C%2Fstrong%3E%20UAE%3Cbr%3E%3Cstrong%3ENumber%20of%20staff%3A%3C%2Fstrong%3E%2037%3Cbr%3E%3Cstrong%3EInvestment%3A%3C%2Fstrong%3E%20Initial%20undisclosed%20funding%20from%20SC%20Ventures%3B%20second%20round%20of%20funding%20totalling%20%2414%20million%20from%20a%20consortium%20of%20SBI%2C%20a%20Japanese%20VC%20firm%2C%20and%20SC%20Venture%3C%2Fp%3E%0A
Islamophobia definition
A widely accepted definition was made by the All Party Parliamentary Group on British Muslims in 2019: “Islamophobia is rooted in racism and is a type of racism that targets expressions of Muslimness or perceived Muslimness.” It further defines it as “inciting hatred or violence against Muslims”.
MATCH INFO
Rugby World Cup (all times UAE)
Final: England v South Africa, Saturday, 1pm
Company: Instabug
Founded: 2013
Based: Egypt, Cairo
Sector: IT
Employees: 100
Stage: Series A
Investors: Flat6Labs, Accel, Y Combinator and angel investors
The%20US%20Congress%20explained
%3Cp%3E-%20Congress%20is%20one%20of%20three%20branches%20of%20the%20US%20government%2C%20and%20the%20one%20that%20creates%20the%20nation's%20federal%20laws%3C%2Fp%3E%0A%3Cp%3E-%20Congress%20is%20divided%20into%20two%20chambers%3A%20The%20House%20of%20Representatives%20and%20the%20Senate%3C%2Fp%3E%0A%3Cp%3E-%C2%A0The%20House%20is%20made%20up%20of%20435%20members%20based%20on%20a%20state's%20population.%20House%20members%20are%20up%20for%20election%20every%20two%20years%3C%2Fp%3E%0A%3Cp%3E-%20A%20bill%20must%20be%20approved%20by%20both%20the%20House%20and%20Senate%20before%20it%20goes%20to%20the%20president's%20desk%20for%20signature%3C%2Fp%3E%0A%3Cp%3E-%20A%20political%20party%20needs%20218%20seats%20to%20be%20in%20control%20of%20the%20House%20of%20Representatives%3C%2Fp%3E%0A%3Cp%3E-%20The%20Senate%20is%20comprised%20of%20100%20members%2C%20with%20each%20state%20receiving%20two%20senators.%20Senate%20members%20serve%20six-year%20terms%3C%2Fp%3E%0A%3Cp%3E-%20A%20political%20party%20needs%2051%20seats%20to%20control%20the%20Senate.%20In%20the%20case%20of%20a%2050-50%20tie%2C%20the%20party%20of%20the%20president%20controls%20the%20Senate%3C%2Fp%3E%0A
KEY%20DATES%20IN%20AMAZON'S%20HISTORY
%3Cp%3E%3Cstrong%3EJuly%205%2C%201994%3A%3C%2Fstrong%3E%20Jeff%20Bezos%20founds%20Cadabra%20Inc%2C%20which%20would%20later%20be%20renamed%20to%20Amazon.com%2C%20because%20his%20lawyer%20misheard%20the%20name%20as%20'cadaver'.%20In%20its%20earliest%20days%2C%20the%20bookstore%20operated%20out%20of%20a%20rented%20garage%20in%20Bellevue%2C%20Washington%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EJuly%2016%2C%201995%3A%3C%2Fstrong%3E%20Amazon%20formally%20opens%20as%20an%20online%20bookseller.%20%3Cem%3EFluid%20Concepts%20and%20Creative%20Analogies%3A%20Computer%20Models%20of%20the%20Fundamental%20Mechanisms%20of%20Thought%3C%2Fem%3E%20becomes%20the%20first%20item%20sold%20on%20Amazon%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3E1997%3A%3C%2Fstrong%3E%20Amazon%20goes%20public%20at%20%2418%20a%20share%2C%20which%20has%20grown%20about%201%2C000%20per%20cent%20at%20present.%20Its%20highest%20closing%20price%20was%20%24197.85%20on%20June%2027%2C%202024%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3E1998%3A%3C%2Fstrong%3E%20Amazon%20acquires%20IMDb%2C%20its%20first%20major%20acquisition.%20It%20also%20starts%20selling%20CDs%20and%20DVDs%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3E2000%3A%3C%2Fstrong%3E%20Amazon%20Marketplace%20opens%2C%20allowing%20people%20to%20sell%20items%20on%20the%20website%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3E2002%3A%3C%2Fstrong%3E%20Amazon%20forms%20what%20would%20become%20Amazon%20Web%20Services%2C%20opening%20the%20Amazon.com%20platform%20to%20all%20developers.%20The%20cloud%20unit%20would%20follow%20in%202006%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3E2003%3A%3C%2Fstrong%3E%20Amazon%20turns%20in%20an%20annual%20profit%20of%20%2475%20million%2C%20the%20first%20time%20it%20ended%20a%20year%20in%20the%20black%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3E2005%3A%3C%2Fstrong%3E%20Amazon%20Prime%20is%20introduced%2C%20its%20first-ever%20subscription%20service%20that%20offered%20US%20customers%20free%20two-day%20shipping%20for%20%2479%20a%20year%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3E2006%3A%3C%2Fstrong%3E%20Amazon%20Unbox%20is%20unveiled%2C%20the%20company's%20video%20service%20that%20would%20later%20morph%20into%20Amazon%20Instant%20Video%20and%2C%20ultimately%2C%20Amazon%20Video%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3E2007%3A%3C%2Fstrong%3E%20Amazon's%20first%20hardware%20product%2C%20the%20Kindle%20e-reader%2C%20is%20introduced%3B%20the%20Fire%20TV%20and%20Fire%20Phone%20would%20come%20in%202014.%20Grocery%20service%20Amazon%20Fresh%20is%20also%20started%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3E2009%3A%3C%2Fstrong%3E%20Amazon%20introduces%20Amazon%20Basics%2C%20its%20in-house%20label%20for%20a%20variety%20of%20products%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3E2010%3A%3C%2Fstrong%3E%20The%20foundations%20for%20Amazon%20Studios%20were%20laid.%20Its%20first%20original%20streaming%20content%20debuted%20in%202013%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3E2011%3A%3C%2Fstrong%3E%20The%20Amazon%20Appstore%20for%20Google's%20Android%20is%20launched.%20It%20is%20still%20unavailable%20on%20Apple's%20iOS%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3E2014%3A%3C%2Fstrong%3E%20The%20Amazon%20Echo%20is%20launched%2C%20a%20speaker%20that%20acts%20as%20a%20personal%20digital%20assistant%20powered%20by%20Alexa%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3E2017%3A%3C%2Fstrong%3E%20Amazon%20acquires%20Whole%20Foods%20for%20%2413.7%20billion%2C%20its%20biggest%20acquisition%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3E2018%3A%3C%2Fstrong%3E%20Amazon's%20market%20cap%20briefly%20crosses%20the%20%241%20trillion%20mark%2C%20making%20it%2C%20at%20the%20time%2C%20only%20the%20third%20company%20to%20achieve%20that%20milestone%3C%2Fp%3E%0A
Living in...
This article is part of a guide on where to live in the UAE. Our reporters will profile some of the country’s most desirable districts, provide an estimate of rental prices and introduce you to some of the residents who call each area home.
A Bad Moms Christmas
Dir: John Lucas and Scott Moore
Starring: Mila Kunis, Kathryn Hahn, Kristen Bell, Susan Sarandon, Christine Baranski, Cheryl Hines
Two stars
'Shakuntala Devi'
Starring: Vidya Balan, Sanya Malhotra
Director: Anu Menon
Rating: Three out of five stars
Going grey? A stylist's advice
If you’re going to go grey, a great style, well-cared for hair (in a sleek, classy style, like a bob), and a young spirit and attitude go a long way, says Maria Dowling, founder of the Maria Dowling Salon in Dubai.
It’s easier to go grey from a lighter colour, so you may want to do that first. And this is the time to try a shorter style, she advises. Then a stylist can introduce highlights, start lightening up the roots, and let it fade out. Once it’s entirely grey, a purple shampoo will prevent yellowing.
“Get professional help – there’s no other way to go around it,” she says. “And don’t just let it grow out because that looks really bad. Put effort into it: properly condition, straighten, get regular trims, make sure it’s glossy.”
THE SPECS
Engine: 1.5-litre
Transmission: 6-speed automatic
Power: 110 horsepower
Torque: 147Nm
Price: From Dh59,700
On sale: now
The specs
Engine: 3.0-litre six-cylinder turbo
Power: 398hp from 5,250rpm
Torque: 580Nm at 1,900-4,800rpm
Transmission: Eight-speed auto
Fuel economy, combined: 6.5L/100km
On sale: December
Price: From Dh330,000 (estimate)
Company%C2%A0profile
%3Cp%3E%3Cstrong%3ECompany%20name%3A%20%3C%2Fstrong%3EOutsized%0D%3Cbr%3E%3Cstrong%3EStarted%3A%20%3C%2Fstrong%3E2016%0D%3Cbr%3E%3Cstrong%3EFounders%3A%20%3C%2Fstrong%3EAzeem%20Zainulbhai%2C%20Niclas%20Thelander%2C%20Anurag%20Bhalla%20and%20Johann%20van%20Niekerk%20%0D%3Cbr%3E%3Cstrong%3EBased%3A%20%3C%2Fstrong%3EIndia%2C%20South%20Africa%2C%20South-East%20Asia%2C%20Mena%0D%3Cbr%3E%3Cstrong%3ESector%3A%3C%2Fstrong%3E%20Recruitment%0D%3Cbr%3E%3Cstrong%3EInvestment%20raised%3A%3C%2Fstrong%3E%20%241%20million%0D%3Cbr%3E%3Cstrong%3ECurrent%20staff%20count%3A%3C%2Fstrong%3E%2040%0D%3Cbr%3E%3Cstrong%3EInvestors%3A%20%3C%2Fstrong%3ESeed%20and%20angel%20investors%0D%3Cbr%3E%3C%2Fp%3E%0A
COMPANY PROFILE
Founders: Alhaan Ahmed, Alyina Ahmed and Maximo Tettamanzi
Total funding: Self funded
Company%20profile
%3Cp%3E%3Cstrong%3ECompany%20name%3A%3C%2Fstrong%3E%20FinFlx%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EStarted%3A%3C%2Fstrong%3E%20January%202021%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EFounders%3A%3C%2Fstrong%3E%20Amr%20Yussif%20(co-founder%20and%20CEO)%2C%20Mattieu%20Capelle%20(co-founder%20and%20CTO)%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EBased%20in%3A%3C%2Fstrong%3E%20Dubai%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EIndustry%3A%3C%2Fstrong%3E%20FinTech%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EFunding%20size%3A%3C%2Fstrong%3E%20%241.5m%20pre-seed%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EInvestors%3A%3C%2Fstrong%3E%20Venture%20capital%20-%20Y%20Combinator%2C%20500%20Global%2C%20Dubai%20Future%20District%20Fund%2C%20Fox%20Ventures%2C%20Vector%20Fintech.%20Also%20a%20number%20of%20angel%20investors%3C%2Fp%3E%0A
Frankenstein in Baghdad
Ahmed Saadawi
Penguin Press
Dubai Bling season three
Cast: Loujain Adada, Zeina Khoury, Farhana Bodi, Ebraheem Al Samadi, Mona Kattan, and couples Safa & Fahad Siddiqui and DJ Bliss & Danya Mohammed
Rating: 1/5
Infiniti QX80 specs
Engine: twin-turbocharged 3.5-liter V6
Power: 450hp
Torque: 700Nm
Price: From Dh450,000, Autograph model from Dh510,000
Available: Now
French business
France has organised a delegation of leading businesses to travel to Syria. The group was led by French shipping giant CMA CGM, which struck a 30-year contract in May with the Syrian government to develop and run Latakia port. Also present were water and waste management company Suez, defence multinational Thales, and Ellipse Group, which is currently looking into rehabilitating Syrian hospitals.
UAE SQUAD
Mohammed Naveed (captain), Mohamed Usman (vice captain), Ashfaq Ahmed, Chirag Suri, Shaiman Anwar, Mohammed Boota, Ghulam Shabber, Imran Haider, Tahir Mughal, Amir Hayat, Zahoor Khan, Qadeer Ahmed, Fahad Nawaz, Abdul Shakoor, Sultan Ahmed, CP Rizwan
