21/7/2025–|Last update: 17:39 (Mecca time)
A group of unidentified pirates enables to take advantage of a security vulnerability in server software.Microsoft“It allows them to penetrate servers and leak their data, according to a report published by” Bloomberg “.
For its part, Microsoft launched a security update as soon as the vulnerability was discovered in order to completely close it, and it also started to gradually send the update to its servers around the world, according to the report.
The Cyber Security Agency and the US infrastructure security warned that the vulnerability allows hackers to access all files stored in the servers, and also enables them to operate the code directly inside the server, according to the report.
The report also referred to a set of warnings received from cybersecurity companies, as Silas Catterler estimated the security researcher at “Centis” the damage to more than 10,000 companies around the world using Microsoft servers software.
The Google Group of Intelligence threats also warned in a statement that it sent to the agency via e -mail that it noted the exploitation of the pirates this security vulnerability, adding that such gaps are very dangerous, because it allows pirates continuous access and not documented to the servers, which constitutes a continuous threat to the affected institutions.
Jane Yu, CEO of Black Panda, which specializes in responding to cyber accidents – and its headquarters, said that Microsoft servers software is one of the highest safety protocols in the world, likening them to the fortified castle, according to the report.
The report quoted the “Washington Post” newspaper that several federal and governmental bodies, universities, and energy companies were affected, as well as the influence of the Asian Telecom Company.
Thanks to the discovery of this vulnerability to the security company “ICorti”, as Katler explained that the company found the vulnerability and reached it last Friday, according to the “Bloomberg” report.
The company also stated that the vulnerability allows the hackers to steal the safety keys for any user in the server, even if the vulnerability is repaired and closed, and confirmed that the vulnerability allows the hackers to adjust the components of the basic server system and add any user they want even after closing it.
While Bloomberg tried to communicate with Microsoft in order to obtain a special statement by the agency, the company rejected this, and referred to the official statement it presented to its users.