Gold prices steady ahead of Fed decision; weekly weakness noted
Investing.com -- Microsoft Corp (NASDAQ:MSFT). is investigating whether a leak from its early alert system for cybersecurity companies allowed Chinese hackers to exploit flaws in its SharePoint service before they were patched.
The technology company is examining if the Microsoft Active Protections Program (MAPP) may have contributed to widespread exploitation of vulnerabilities in its SharePoint software globally over recent days, according to a report from Bloomberg, citing people familiar with the matter who asked not to be identified.
"As part of our standard process, we’ll review this incident, find areas to improve, and apply those improvements broadly," a Microsoft spokesperson said in a statement, adding that partner programs are an important part of the company’s security response.
The 17-year-old MAPP program is designed to give cybersecurity experts advance notice of security concerns, allowing them time to fix computer systems before vulnerabilities become public knowledge. Members receive information about new patches 24 hours before public release, while a more thoroughly vetted subset gets notifications five days earlier.
Microsoft has attributed the SharePoint breaches to state-sponsored hackers from China.
This article was generated with the support of AI and reviewed by an editor. For more information see our T&C.