For awareness,
Microsoft (MSFT.O), has issued an alert about “active attacks” on server software used by government agencies and businesses to share documents within organizations, and it recommended security updates that customers should apply immediately.
The FBI on Sunday said it is aware of the attacks and is working closely with its federal and private-sector partners, but offered no other details.
Reuters Reporting: https://www.reuters.com/sustainability/boards-policy-regulation/microsoft-alerts-businesses-governments-server-software-attack-2025-07-21
Microsoft’s Customer guidance for SharePoint vulnerability CVE-2025-53770: https://msrc.microsoft.com/blog/2025/07/customer-guidance-for-sharepoint-vulnerability-cve-2025-53770/
Cybersecurity Infrastructure Security Agency (CISA)’s Alert on July 20, 2025: https://www.cisa.gov/news-events/alerts/2025/07/20/microsoft-releases-guidance-exploitation-sharepoint-vulnerability-cve-2025-53770
HackerNews on Microsoft Patches 130 Vulnerabilities, Including Critical Flaws in SPNEGO and SQL Server: https://thehackernews.com/2025/07/microsoft-patches-130-vulnerabilities.html?m=1
Earlier last week, Singapore has also experienced attack on critical infrastructure.
Straits Times on Critical infrastructure in S’pore under attack by cyber espionage group: Shanmugam: https://www.straitstimes.com/singapore/critical-infrastructure-in-spore-attacked-by-cyber-espionage-group-shanmugam
Channel News Asia (CNA) on Singapore under cyber attack from sophisticated group UNC3886: Shanmugam: https://www.youtube.com/watch?v=TQkvPhQdovM