Microsoft warning: Hacker attacks on authorities alert the nation!

Microsoft warning: Hacker attacks on authorities alert the nation!

USA - Microsoft has identified a serious security problem in his software. On July 21, 2025, the company confirmed the discovery of a weak point in a blog entry that affects both local servers and Sharepoint. This security gap has already led to hackers entering the systems of "dozens" organizations, including both economic and state agencies. According to reports from the Krone and ZDF demands the American cyber security authority CISA all affected authorities and companies to act quickly.

The weak point potentially enables the theft of data, passwords and digital keys, which opens up to attackers later access to closed security gaps. Microsoft has released updates to fix the problem. Nevertheless, the identity of the attackers remains unclear, and there is no specific information about the US federal authorities concerned, which have been successfully attacked according to the "Washington Post".

Investigations and threats

Investigators in several countries have already made various variants of malware harmless and identified the perpetrators. Activists and researchers of the security company Crowdstrike warn of the significant threat that represents this security gap. In 2023, Chinese hackers allegedly gained access to emails in some US authorities via a weak point in Microsoft software, which further shaken trust in the security infrastructure.

The managers of Crowdstrike described the newly discovered weak point as "significant" and advised to either isolate or switch off affected SharePoint servers in order to minimize the risks. In Germany, too, cybercrime increased in 2023, as the Federal Legal Fild 2023 of the Federal Criminal Police Office shows. The discussion about security strategies and regulatory measures will be more intensive.

regulatory measures and their effects

The need to make critical infrastructures more resistant is increasingly recognized by governments. A report by PwC According to legal regulations on cyber security have already had significant effects on corporate investments. 89 % of German organizations report a moderate to significant influence on their cyber editions. In the EMEA region, this value is 80 %.

The debate about regulatory loads is particularly gaining in the European Union, especially according to the results of the US elections. However, no regulatory relief can be expected in short to medium term. This leaves the question of whether all EU member states go the same way or whether some will find the necessary steps difficult.