Chinese hackers hit US nuclear agency using Microsoft software flaw

Microsoft has issued a critical warning that Chinese state-backed hacking groups have exploited security vulnerabilities in its SharePoint software, primarily affecting organizations using on-premises servers rather than cloud-based services. The identified groups—Linen Typhoon, Violet Typhoon, and Storm-2603—have compromised a wide range of government agencies and private organizations globally since early July. Microsoft emphasized the increasing sophistication and scale of these cyber threats and expects these vulnerabilities to be further integrated into future attacks. Among the most significant breaches is the infiltration of the US National Nuclear Security Administration (NNSA), responsible for the nation’s nuclear weapons design and maintenance, although no classified information was reportedly taken. Other affected entities include various branches of the US Department of Energy, the Department of Education, Florida’s Department of Revenue, and the Rhode Island General Assembly. Cybersecurity experts have detected breaches on over 100 servers spanning 60 organizations, including energy firms, consulting companies, and universities, with investigations ongoing. The campaign’s reach also extends internationally