Microsoft has issued a major security warning for its business customers about attacks that can directly affect their server systems. The threat is linked to the SharePoint servers running via Microsoft across its enterprise customers. This platform enables organisations to share documents within their network, and leaving them vulnerable could pose major risk for the company and government agencies. 

The alert from Microsoft was shared on July 19, 2025 and there is a detailed summary of the issue and how to fix the gaps caused by the attack threats. 

Microsoft SharePoint Server Threat: What You Should Know 

The company’s threat post says, “Microsoft is aware of active attacks targeting on-premises SharePoint Server customers by exploiting vulnerabilities partially addressed by the July Security Update." 

It seems the security risk is limited to the SharePoint customers at the server end, and those using the cloud version are secure from any possible mishaps. Reports have indicated that Microsoft is worried about the active nature of these attacks that were termed zero-day earlier this week, which means they were unaware about the possible impact of these vulnerabilities and who might be already affected by the issues. 

Security experts have shared their own concerns because of the SharePoint server issue. “While cloud environments remain unaffected, on-prem SharePoint deployments—particularly within government, schools, healthcare including hospitals, and large enterprise companies—are at immediate risk," as informed by the Threat Intelligence for Unit 42 at Palo Alto Networks. 

Microsoft’s own report says the vulnerability impacts major versions of the SharePoint Server 2010 and 2013 editions. “Customers using SharePoint Subscription Edition should apply the security update provided in CVE-2025-53771 immediately to mitigate the vulnerability," post adds. 

Urgent Need To Upgrade 

The most important aspect covered because of these attacks is for companies to immediately invest in upgrading their systems. Microsoft is advising its customers to upgrade to the SharePoint Server 2016, 2019, & SharePoint Subscription Edition that will completely protect them from the latest attacks. 

The company has a wide range of its business catering to the affected segment, and not using the cloud-based services tells you the situation on ground that Microsoft needs to overhaul before a major catastrophe like the Crowdstrike outage affects its large business model.