Microsoft Restricts Chinese Firms’ Access to Cybersecurity Program After SharePoint Hacks
Microsoft has scaled back Chinese companies’ access to its cyber early warning system following allegations of Beijing-linked hacking campaigns. The move comes after a wave of cyberattacks targeting Microsoft’s widely used SharePoint servers, which raised suspicions that information shared through Microsoft’s Active Protections Program (MAPP) may have been misused.
The restrictions affect several Chinese firms previously enrolled in MAPP, a program designed to provide trusted security vendors with early access to details about vulnerabilities. This system, which includes technical insights and proof-of-concept code, enables companies to strengthen defenses before exploits become public. However, cybersecurity experts expressed concern that the same data may have been leaked to attackers during the recent SharePoint breaches.
Microsoft disclosed that it had informed MAPP participants about the SharePoint vulnerabilities on June 24, July 3, and July 7. Exploitation attempts were first detected on July 7, fueling speculation that the sudden surge in attacks was linked to the program itself. Some experts believe a rogue participant may have misused Microsoft’s confidential disclosures, accelerating the hacking campaign.
In response, Microsoft confirmed it will no longer provide proof-of-concept code to certain Chinese firms. While this code is valuable for defenders working to patch vulnerabilities quickly, it can also be weaponized by hackers to launch attacks ahead of security updates. “We continuously review participants and suspend or remove them if they violate contracts, including prohibitions on offensive cyber operations,” Microsoft said in a statement.
Although Beijing has strongly denied involvement in the SharePoint hacks, Microsoft declined to reveal details about which companies lost access or the status of its ongoing investigation. The move underscores the growing tension between global technology companies and China over cybersecurity risks, as governments and corporations alike grapple with rising state-linked hacking campaigns.
Source: Reuters