Microsoft scales back Chinese access to cyber early warning system

Microsoft scales back Chinese access to cyber early warning system


A branch of the technology company Microsoft can be seen in Manhattan.

Sven Hoppe | Picture Alliance | Getty Images

Microsoft said on Wednesday it has scaled back some Chinese companies’ access to its early warning system for cybersecurity vulnerabilities following speculation that Beijing was involved in a hacking campaign against the company’s widely used SharePoint servers.

The new restrictions come in the wake of last month’s sweeping hacking attempts against Microsoft SharePoint servers, at least some of which Microsoft and others have blamed on Beijing. That raised suspicions among several cybersecurity experts that there was a leak in the Microsoft Active Protections Program (MAPP), which Microsoft uses to help security vendors worldwide, including in China, to learn about cyber threats before the general public so they can better defend against hackers.

Beijing has denied involvement in any SharePoint hacking.

Microsoft notified members of the MAPP program of the SharePoint vulnerabilities on June 24, July 3 and July 7, Reuters has previously reported. Because Microsoft said it first observed exploitation attempts on July 7, the timing led some experts to allege that the likeliest scenario for the sudden explosion in hacking attempts was because a rogue member of the MAPP program misused the information.

In a statement, Microsoft said several Chinese firms would no longer receive “proof of concept code,” which mimics the operation of genuine malicious software. Proof of concept code can help cybersecurity professionals seeking to harden their systems in a hurry, but it can also be repurposed by hackers to get a jump start on the defenders.

Microsoft said it was aware that the information it provided its partners could be exploited, “which is why we take steps – both known and confidential – to prevent misuse. We continuously review participants and suspend or remove them if we find they violated their contract with us which includes a prohibition on participating in offensive attacks.”

Microsoft declined to disclose the status of its investigation of the hacking or go into specifics about which companies had been restricted.



Source

United Arab Emirates leaving OPEC, effective May 1
World

United Arab Emirates leaving OPEC, effective May 1

Jonathan Raa | Nurphoto | Getty Images The United Arab Emirates announced Tuesday that it will exit OPEC on May 1. “This decision follows a comprehensive review of the UAE’s production policy and its current and future capacity and is based on our national interest and our commitment to contributing effectively to meeting the market’s […]

Read More
This is not a stock picker’s market, says head of Norway’s trillion wealth fund
World

This is not a stock picker’s market, says head of Norway’s $2 trillion wealth fund

Stock markets have been largely buoyant since the end of March after bouncing back from a sell-off sparked by the outbreak of the U.S.-Iran war, but one of the world’s biggest investors is glad not to be buying individual names. Speaking to CNBC’s Ben Boulos on the sidelines of the sovereign wealth fund’s annual Investment […]

Read More
UPS beats Wall Street estimates on top and bottom lines
World

UPS beats Wall Street estimates on top and bottom lines

A UPS driver sits in his truck on April 15, 2026 in the Flatbush neighborhood of the Brooklyn borough in New York City. Michael M. Santiago | Getty Images United Parcel Service on Tuesday posted first-quarter earnings results that beat on the top and bottom lines. Shares of the delivery giant sank roughly 3% in […]

Read More
Powered by WordPress | WP Magazine by WP Mag Plus