Microsoft faces new criticism because its SharePoint software had an unaddressed critical vulnerability that allowed a major cyber-espionage operation to occur. The discovered ToolShell vulnerability in May during a Berlin hacking contest stayed vulnerable after Microsoft released its first fix which led to numerous intrusions in July.
A researcher from Vietnam’s Viettel Group discovered the “ToolShell” bug which Trend Micro’s Zero Day Initiative paid $100,000 to identify. Microsoft released a security fix on July 8 but subsequently verified that the solution failed to address the issue. After hackers started actively exploiting the flaw Microsoft released a second set of patches.
The security firms Sophos along with other organizations stated that the unsuccessful security update enabled attackers to create new exploits which evaded Microsoft’s security systems. The attackers who used the names “Linen Typhoon” and “Violet Typhoon” allegedly linked to China conducted breaches against approximately 100 worldwide organizations.
The incident demonstrates current difficulties in protecting enterprise software systems although the complete extent of damage remains unknown. The Chinese government dismissed all accusations about their involvement in the incident.
Trend Micro explained that vendors must take full responsibility for delivering prompt and successful remediation solutions. Microsoft announced that the problem has received complete resolution.
The security breach intensifies the existing pressure on technology companies to improve their cyber defenses because state-sponsored hackers and sophisticated cybercriminals are expanding their operations.
