Canada’s House of Commons has announced it was the victim of a cyberattack, which investigators believe was carried out by the same China-linked hackers responsible for a recent series of SharePoint attacks.
According to an internal email, the attackers breached an employee database, gaining access to information such as names, job titles, and email addresses. Officials believe the hackers exploited a vulnerability in a Microsoft system. Cybersecurity experts suspect the breach is linked to a SharePoint zero-day flaw that was recently patched by Microsoft after its initial fix failed.
The attackers are thought to be Chinese state-sponsored groups, including Salt Typhoon, which has been blamed for similar attacks on nearly 400 organizations worldwide. A recent Canadian threat report cited China as the "most sophisticated and active cyber threat to Canada."
An expert, Andrew Costis from AttackIQ, noted that in recent weeks, vulnerabilities in Microsoft platforms have caused data breaches at major organizations, including Google. He recommends that government bodies implement proactive security measures to test their defenses against these types of attacks.
Found this article interesting? Follow us on X(Twitter) ,Threads and FaceBook to read more exclusive content we post.
