Federal cybersecurity officials have issued a warning to Microsoft users about a security flaw allowing hackers to access to certain SharePoint systems.

The attacks appear to have escalated because Microsoft released incomplete patches for the initial vulnerabilities, according to Benjamin Harris, CEO of watchTowr. After researche

It issued an alert about “active attacks” targeting its server software and urged customers to install new security updates that have been released.

The attacks, discovered over the weekend, exploit a previously unknown vulnerability in the document-sharing software, prompting immediate action from both Microsoft and federal investigators. Newsweek reached out to Microsoft and the Cybersecurity and Infrastructure Security Agency (CISA) via email for comment.

A China-linked threat actor has been observed exploiting SharePoint servers to deliver ransomware, according to Microsoft researchers, in the latest sign of worsening attacks against on-premises SharePoint Server customers.

The path to a worldwide hacking campaign began with a contest for cash and a free laptop.

Microsoft warned of "active attacks" targeting some users of its SharePoint software over the weekend and released an emergency patch that fixes only some versions of the vulnerable server software. Why it matters: It remains unclear how many businesses were already hacked prior to Microsoft's warning,

A series of cyberattacks targeting Microsoft collaboration software, specifically SharePoint, have been linked to Chinese hackers and threat actors.