A hack targeting Microsoft's SharePoint software was likely carried out by a single bad actor, researchers say. Andy Boyd, the former director of the CIA Center for Cyber Intelligence, joins with more.

Redmond

Researchers have identified a cyberattack targeting Microsoft SharePoint servers, compromising the personal information of millions of users globally. The attack is believed to have exploited at least three previously unknown vulnerabilities, two of which have since been patched by Microsoft. However, estimates suggest that at least 10,000 servers remain vulnerable, with the actual number potentially much higher.

Microsoft has issued urgent security warnings and is collaborating with federal authorities and cybersecurity companies to mitigate the threat. The widespread use of Microsoft products increases the potential impact, as SharePoint servers are often connected to other services like Outlook. While the attack is suspected to be the work of a nation-state, possibly linked to Chinese actors, this has not been confirmed. Businesses and governments are actively working to identify and patch affected systems.

Hackers exploit security flaw of Microsoft SharePoint servers

Researchers say a hack targeting the personal information of millions of Microsoft SharePoint users around the world is likely the work of a single bad actor. The company is now working with federal authorities on a coordinated response. Andy Boyd is the former director of the CIA's Center for Cyber Intelligence. He joins us right there from the screen. Andy, thank you for joining us. What more should we learn about the size and the scope of this attack? And how is this something even able to be carried out? How is this even possible? Well, Jerika, thank you for the opportunity to discuss this. I mean, what we're dealing with here is at least three zero days, what the cybersecurity industry would refer to as zero days, vulnerabilities that have not been seen in the wild, so to speak, previously. Two out of the three of those to date, as far as I understand it, have been patched by Microsoft. But a leading internet intelligence firm by the name of Census estimates that at least 10,000 SharePoint servers have this vulnerability and have to be patched, but also estimates it could be a much higher number than that. Microsoft has issued an urgent security warning for active attacks against SharePoint servers across the globe. You know, why are these threats still active and how can Microsoft defend against them? They have to expect that this is a possibility. So the reality is Microsoft, and we refer to attack surface in the cybersecurity industry, and Microsoft has a huge attack surface. It's ubiquitous. I have Microsoft on my computer. You probably have it on yours. And all of those endpoints across the globe are potential attack points. So Microsoft is dealing with a very large problem. The SharePoint servers are also connected to your Outlook email and a variety of other products. So it may make those things vulnerable as well. What can the average citizen do about it? Probably not. But businesses, governments that are affected by this are scrambling to find those vulnerabilities, whether their SharePoint servers are vulnerable so that they can patch them. I believe Microsoft is trying the best as the best it can. But again, it has an enormous attack surface, and various other cybersecurity companies are helping them mitigate this threat. In all likelihood, this is a state actor, a nation state. A number of cybersecurity research firms are pointing to potential Chinese actors. That has not been confirmed yet, but that may be the case. All right, Andy Boyd, thank you so much for your time. We appreciate it.

The next set of peace talks between Ukraine and Russia - the first meeting in seven weeks - is planned for Wednesday in Turkey, President Zelenskyy quoted the head of Ukraine's National Security and Defence Council as saying.

Kyiv

Ukraine Invasion

Zelenskyy says new peace talks planned for Wednesday

A sweeping cyber espionage operation targeting Microsoft server software 'SharePoint' compromised about 100 different organizations as of the weekend, two of the organizations that helped uncover the campaign said on Monday (July 21).

Microsoft server hack hit about 100 organizations, experts say

Protestors showed up at the federal courthouse in Boston on Monday amid Harvard's $2 billion legal battle with the Trump administration.

Boston

Protestors gather outside courthouse amid Harvard-Trump hearing

Malcolm-Jamal Warner, an actor and artist who rose to fame as a child as Theodore Huxtable on “The Cosby Show,” has died in a drowning accident in Costa Rica, where he was on vacation with his family, according to a source close to the actor.

Los Angeles

‘The Cosby Show’ star Malcolm-Jamal Warner dead at 54

An off-duty U.S. Customs and Border Protection agent was shot after an apparent robbery went wrong in New York, officials say. New York Mayor Eric Adams said a 21-year-old undocumented immigrant was taken into custody. The agent is in stable condition and is expected to survive.

New York

Off-duty Border Patrol agent shot in NYC by undocumented migrant

The jet crashed onto the campus of Milestone School and College in Dhaka's Uttara neighbourhood, where students were taking tests and attending regular classes.

Dhaka

At least 20 killed after Bangladesh Air Force jet crashes into school

An investigation into Jeju Air's fatal plane crash in December has found "clear evidence" that pilots shut off the less-damaged engine after a bird strike in South Korea, a source told Reuters. But a progress report was not released as planned, after families of the bereaved protested some of its phrasing.

Muan-gun

Report says pilot shut wrong engine before Jeju Air crash

Iran, China and Russia will discuss Tehran's nuclear activities and sanctions on Tuesday, with the E3 nations set for talks on Friday amid threats of reimposing sanctions.

Tehran

Iran to consult with Russia, China ahead of European nuclear talks

Hundreds of Bedouin civilians were evacuated from Syria's predominantly Druze city of Sweida on Monday (July 21) as part of a U.S.-backed truce meant to end fighting that has killed hundreds of people, state media and witnesses said.

As Suwayda

Bedouin civilians evacuate Syria's Sweida as tense truce holds

Japanese Prime Minister Shigeru Ishiba vowed to remain in office on Monday after his ruling coalition suffered a bruising defeat in upper house elections, prompting some of his own party to deliberate his future as the opposition weighed a no-confidence motion.

Tokyo

Japan PM Ishiba vows to stay on after bruising election defeat

Police say Fernando Ramirez drove onto a crowded sidewalk outside a Los Angeles nightclub early Saturday, injuring dozens. He was later shot by a bystander who fled the scene, prompting a citywide search.

Police search for gunman after car-ramming attack in L.A.

Japan's ruling coalition is certain to lose control of the upper house in election, public broadcaster NHK reported, an outcome that further weakens Prime Minister Shigeru Ishiba's grip on power as a tariff deadline with the United States looms.

Japan's ruling coalition loses control of upper house

Iran's foreign minister has said the country France, Germany and the UK are looking to set a date for a meeting for nuclear talks, in what could be a step toward ending the protracted impasse over Iran's nuclear programme and Western concerns.

Middle East Conflict

Iran and three European powers set to resume nuclear talks

The Trump administration said on Saturday (July 19) it will take action against Mexico under its "America First" policy, saying the Mexican government's earlier decision to cut flight slots in Mexico City, which affects U.S. airlines, violates a bilateral air agreement.

Washington

U.S. threatens Mexican flights over cargo, competition issues

U.S. President Donald Trump has sued the Wall Street Journal and its owners including Rupert Murdoch for at least $10 billion, over the report that his name was on a 2003 birthday greeting for Jeffrey Epstein that included a sexually suggestive drawing and a reference to secrets they shared.

Trump sues Wall Street Journal for $10 billion over Epstein report

Over 200 Venezuelans who were deported from the U.S. on allegations of gang membership earlier this year and detained in an El Salvador jail have arrived home to Caracas as part of a coordinated prisoner exchange. Ten Americans held in Venezuela returned to the U.S., officials said.

Caracas

El Salvador sends detained Venezuelans home in swap for Americans

Japanese voters headed to the polls on Sunday (July 20) in a tightly contested upper house election that could unleash political turmoil, with rising prices, immigration concerns and the emergence of a Trump-style "Japanese-first" party threatening to weaken Prime Minister Shigeru Ishiba's grip on power.

Japan heads to the polls for Upper House elections

The violent clashes between the Druze minority, Bedouins and other armed groups in the southern province of Sweida have left at least 900 people dead. Some reports suggest that fighting may have halted early on Sunday.

Damascus

Syrian interim president urges respect of ceasefire in Sweida clashes

The proposal comes as Russia continues to intensify its long-range attacks on Ukraine, often firing more drones in a single night than it did during some months in 2024.

Zelenskyy proposes new round of peace talks with Russia

Stacey Williams, a former Sports Illustrated model who briefly dated Jeffrey Epstein speaks with CNN’s Brianna Keilar and describes Epstein’s relationship with Donald Trump. She also alleges Trump once groped her in 1993, but he denies the claim.

Epstein’s ex-girlfriend describes alleged incident with Trump

A vehicle rammed into a crowd of people waiting to enter an East Hollywood nightclub, injuring 30, seven of them critically, in Los Angeles on Saturday morning. Authorities say bystanders attacked the driver, who also sustained a gunshot wound.

West Hollywood

Driver crashes into line of people in Hollywood, police say he was shot

A boat full of tourists capsized during a storm in one of the country's most iconic tourist destinations, leaving at least 34 dead and eight missing. Rescue efforts continue as a new tropical storm approaches.

Hạ Long Bay

Dozens drown after tourist boat capsizes in Ha Long Bay

The agreement comes after intense clashes displaced tens of thousands of people and contributed to a worsening humanitarian crisis in a region still recovering from over a decade of brutal civil war.

U.S. says Israel-Syria agree to ceasefire, clashes continue in Sweida

Ukraine has appointed a new prime minister, 39-year-old Yulia Svyrydenko, as part of a sweeping government reshuffle announced by President Volodymyr Zelenkskyy. This marks the most significant political shift since the start of Russia's full-scale invasion in 2022.

Yulia Svyrydenko takes charge as Ukraine's new prime minister

Former Brazilian president Jair Bolsonaro, currently on trial at the Supreme Court, has been ordered to wear an electronic ankle monitor. Bolsonaro is accused of leading an alleged attempt to stage a coup to overturn the 2022 election.

Rio de Janeiro

Brazil's Bolsonaro ordered to wear ankle monitor

At least three deputies were killed after an explosion at a Los Angeles County Sheriff's Department training facility, officials said. Attorney General Pam Bondi said federal agents were at the scene.

Three killed in explosion at L.A. County Sheriff's Department facility

The UK's Labour Party has passed a landmark electoral reform, aligning with Scotland and Wales in lowering the voting age from 18 to 16. The change fulfills a key promise by the ruling party but garnered criticism from the Conservative Party.

London

UK lowers voting age from 18 to 16 in historic electoral reform

The U.S. House of Representatives approved a rescissions package to slash $9 billion in foreign aid and public broadcasting funding, sending the bill to President Donald Trump's desk.

U.S. House passes $9 billion cut to foreign aid, public broadcasting

U.S. President Donald Trump on Thursday night ordered Attorney General Pam Bondi to help facilitate the release of grand jury transcripts related to Jeffrey Epstein as the administration faces pressure to share more materials on the case.

Trump orders release of Epstein-related grand jury transcripts

The European Union has agreed to impose a new round of sanctions against Russia, targeting the country's energy and financial sectors in a bid to tighten the screws on the Kremlin's war machine and force a temporary ceasefire in Ukraine.

Breakdown