London Daily

Focus on the big picture.
Wednesday, Jul 01, 2026

Microsoft hack: White House warns of 'active threat' of email attack

Microsoft hack: White House warns of 'active threat' of email attack

The US is expressing growing concern over a hack on Microsoft's Exchange email software that the tech company has blamed on China.

"This is an active threat," White House press secretary Jen Psaki said on Friday. "Everyone running these servers - government, private sector, academia - needs to act now to patch them."

Microsoft said hackers had used its mail server to attack their targets.

It is reported that tens of thousands of US organisations may be impacted.

The US has long accused the Chinese government of cyber-espionage, something Beijing denies.

Ms Psaki told reporters that the White House was "concerned that there are a large number of victims" and said the vulnerabilities found in Microsoft's servers "could have far reaching impacts".

On Saturday, the US National Security Council said it was "essential that any organisation with a vulnerable server take immediate measures" to determine if they had been targeted.


What do we know about the hack?


Microsoft executive Tom Burt revealed the breach in a blog post on Tuesday and announced updates to counter security flaws which he said had allowed hackers to gain access to Microsoft Exchange servers.

The Microsoft Threat Intelligence Center (MSTIC) attributed the attacks with "high confidence" to a "state-sponsored threat actor" based in China which they named Hafnium.

The tech giant said Hafnium had tried to steal information from groups such as infectious disease researchers, law firms, higher education institutions and defence contractors.

A spokesman for the Chinese government told Reuters news agency that the country was not behind the hack. Beijing has repeatedly rejected US accusations of cyber-crime.

More than 20,000 organisations have been compromised in the US with many more affected worldwide, Reuters reported.

Brian Krebs, an industry expert and blogger, put the number higher - citing multiple security sources.

"At least 30,000 organizations across the United States - including a significant number of small businesses, towns, cities and local governments - have over the past few days been hacked by an unusually aggressive Chinese cyber-espionage unit that's focused on stealing email from victim organizations," he wrote in a blog post.

Mr Krebs warned attacks had "dramatically stepped up" since Microsoft's announcement.

What is Microsoft doing?


News of the breach prompted the US Cybersecurity and Infrastructure Security Agency (Cisa) to release an emergency directive telling agencies and departments to take urgent action.

Jake Sullivan, the White House National Security Adviser, has also urged network owners to download the security patches as soon as possible.


Microsoft has not confirmed the reported figures but said in a further statement on Friday that it was working closely with US government agencies.

It told customers "the best protection" was "to apply updates as soon as possible across all impacted systems".

However, it also said it was deploying some mitigation techniques designed to help those who are unable to upgrade quickly, but warned they were not "a remediation if your Exchange servers have already been compromised, nor are they full protection against attack".

This is the eighth time in the past 12 months that Microsoft has publicly accused nation-state groups of targeting institutions critical to civil society.

Microsoft said the attack was in no way related to the SolarWinds attack, which hit US government agencies late last year.

Although Hafnium is based in China, it allegedly conducts its operations primarily from leased virtual private servers in the US, Microsoft said.

China presence


While many US tech firms have had a tumultuous relationship with the Chinese government, Microsoft has maintained a mainland presence since 1992.

Unlike Facebook and Twitter, Microsoft's business-oriented social media platform LinkedIn is still accessible in China.

So, too, is its search engine Bing, although locally-grown Baidu dominates the search market.

Newsletter

Related Articles

0:00
0:00
Close
Global Billionaire Numbers Rise 13 Percent Amid Artificial Intelligence Stock Boom
Body of Fifteen-Year-Old Boy Recovered from Manchester Reservoir
Major Rail Disruption in UK After Cows Stray Onto Intercity Tracks
UK Launches National Campaign to Reduce Water Consumption After Heatwave
Foreign Secretary David Lammy Raises Case of UK Woman Death with US Authorities
Shetland Islands Council Approves Subsea Tunnel Plans Linking Major Islands
Telegraph Media Group Takeover by German-Led Consortium Completed
Resident Doctors in England Accept Government Pay and Conditions Deal
Andy Burnham Sets Out Ten-Year Economic Vision Amid Labour Leadership Debate
Asylum Seekers in UK Face £10,000 Contribution Requirement Under New Law
UK Government Moves to Break Apple and Google App Store Dominance
New UK Steel Tariffs and Import Quotas Aim to Shield Domestic Industry
Damning Report Exposes Failures in Maternity and Neonatal Care Across England
Government Data Reveals Five Billion Pound Shortfall in UK Defence Budget
Prime Minister Keir Starmer Unveils Three Hundred Billion Pound Defence Investment Plan
UK Crime and Policing Act 2026 Comes into Force with New Justice System Reforms
UK Prime Minister Hosts NATO Secretary General Mark Rutte for Security Talks at Downing Street
UK Tightens Oversight of Emissions Trading Scheme Through New Ministerial Directions
UK Issues Statement at UN Security Council on Violence in the West Bank
UK Environment Agency Clears Illegal Waste Site in West Yorkshire After Court Action
UK Resident Sentenced for Fraudulently Claiming £30,000 in Covid Business Loans
UK Launches Taskforce to Help Young People Claim Dormant Child Trust Fund Savings
UK Gambling Commission Fines Betfred Operator Petfre Gibraltar £900,000 Over Social Responsibility Failures
UK Appoints Lord Collins as Global Envoy for LGBT+ Rights
UK Expands Detention Capacity to Support Removal of Foreign Criminals and Failed Asylum Seekers
UK Resident Doctors End Strike Action After Accepting Government Pay Deal
UK Tightens Sentencing for Domestic Killings with 25-Year Starting Point for Murder of Partners
UK to Build at Least Six New Royal Navy Warships Under Expanded Defence Programme
UK Government Unveils £5 Billion Defence Investment Plan Focused on Drones and Autonomous Warfare Systems
UK Economy Records 0.6% First Quarter Growth as Services and Manufacturing Drive Steady Expansion
Welsh Government Unveils New Agricultural Support Plan Focused on Sustainability and Rural Growth
UK Teacher Recruitment Shortfalls Continue in Science and STEM Subjects
Police Scotland Expands Cybercrime Investigations Amid Rising Digital Fraud
UK Universities Warn of Risk to International Student Numbers Amid Visa Changes
UK Defence Ministry Pivots Toward Greater Domestic Military Procurement
UK Launches National Rail Review After Repeated Service Disruptions
Northern Ireland Assembly Debates Long-Term Funding Settlement for Public Services
UK Accelerates Approval of North Sea Offshore Wind Projects to Expand Energy Capacity
UK Retail Sales Fall as Households Cut Discretionary Spending in June
UK Expands Border Intelligence Cooperation with France and Belgium to Target Smuggling Networks
Scottish Government Faces Pressure Over Delays in Major Infrastructure and Transport Projects
UK Launches Multi-Billion-Pound Artificial Intelligence Infrastructure Investment Fund
National Health Service Warns of Continued Emergency Department Strain Across England
Bank of England Signals Interest Rate Hold as Wage Growth Keeps Inflation Elevated
UK Sets Emergency Fiscal Strategy as Inflation Pressures and Weak Manufacturing Growth Persist
UK Launches New Measures to Improve Safety Standards in Night-Time Venues
UK Tightens Import Rules for Low-Value Parcels to Support Domestic Retailers
UK Launches £85 Million Obesity Care Programme Targeting Early Intervention Projects
UK Commits Up to $26 Million to Ebola Response in Democratic Republic of Congo
Security Industry Authority Flags Safety Failures in Night-Time Economy Inspections
×