10:28 AM EDT, 07/22/2025 (MT Newswires) -- Microsoft ( MSFT ) said Tuesday that it has observed two Chinese nation-state actors and another China-based threat actor exploiting vulnerabilities to attack on-premises SharePoint servers.

The two Chinese nation-state actors were identified by Microsoft ( MSFT ) as Linen Typhoon and Violet Typhoon, while the other China-based threat actor was tracked as Storm-2603. The attacks, flagged by Microsoft ( MSFT ) on Friday, exploited a spoofing vulnerability and a remote code vulnerability, the company said.

"Investigations into other actors also using these exploits are still ongoing," Microsoft ( MSFT ) said in a blog post.

Price: 508.71, Change: -1.36, Percent Change: -0.27