London Daily

Focus on the big picture.
Sunday, Jul 19, 2026

Microsoft hack: White House warns of 'active threat' of email attack

Microsoft hack: White House warns of 'active threat' of email attack

The US is expressing growing concern over a hack on Microsoft's Exchange email software that the tech company has blamed on China.

"This is an active threat," White House press secretary Jen Psaki said on Friday. "Everyone running these servers - government, private sector, academia - needs to act now to patch them."

Microsoft said hackers had used its mail server to attack their targets.

It is reported that tens of thousands of US organisations may be impacted.

The US has long accused the Chinese government of cyber-espionage, something Beijing denies.

Ms Psaki told reporters that the White House was "concerned that there are a large number of victims" and said the vulnerabilities found in Microsoft's servers "could have far reaching impacts".

On Saturday, the US National Security Council said it was "essential that any organisation with a vulnerable server take immediate measures" to determine if they had been targeted.


What do we know about the hack?


Microsoft executive Tom Burt revealed the breach in a blog post on Tuesday and announced updates to counter security flaws which he said had allowed hackers to gain access to Microsoft Exchange servers.

The Microsoft Threat Intelligence Center (MSTIC) attributed the attacks with "high confidence" to a "state-sponsored threat actor" based in China which they named Hafnium.

The tech giant said Hafnium had tried to steal information from groups such as infectious disease researchers, law firms, higher education institutions and defence contractors.

A spokesman for the Chinese government told Reuters news agency that the country was not behind the hack. Beijing has repeatedly rejected US accusations of cyber-crime.

More than 20,000 organisations have been compromised in the US with many more affected worldwide, Reuters reported.

Brian Krebs, an industry expert and blogger, put the number higher - citing multiple security sources.

"At least 30,000 organizations across the United States - including a significant number of small businesses, towns, cities and local governments - have over the past few days been hacked by an unusually aggressive Chinese cyber-espionage unit that's focused on stealing email from victim organizations," he wrote in a blog post.

Mr Krebs warned attacks had "dramatically stepped up" since Microsoft's announcement.

What is Microsoft doing?


News of the breach prompted the US Cybersecurity and Infrastructure Security Agency (Cisa) to release an emergency directive telling agencies and departments to take urgent action.

Jake Sullivan, the White House National Security Adviser, has also urged network owners to download the security patches as soon as possible.


Microsoft has not confirmed the reported figures but said in a further statement on Friday that it was working closely with US government agencies.

It told customers "the best protection" was "to apply updates as soon as possible across all impacted systems".

However, it also said it was deploying some mitigation techniques designed to help those who are unable to upgrade quickly, but warned they were not "a remediation if your Exchange servers have already been compromised, nor are they full protection against attack".

This is the eighth time in the past 12 months that Microsoft has publicly accused nation-state groups of targeting institutions critical to civil society.

Microsoft said the attack was in no way related to the SolarWinds attack, which hit US government agencies late last year.

Although Hafnium is based in China, it allegedly conducts its operations primarily from leased virtual private servers in the US, Microsoft said.

China presence


While many US tech firms have had a tumultuous relationship with the Chinese government, Microsoft has maintained a mainland presence since 1992.

Unlike Facebook and Twitter, Microsoft's business-oriented social media platform LinkedIn is still accessible in China.

So, too, is its search engine Bing, although locally-grown Baidu dominates the search market.

Newsletter

Related Articles

0:00
0:00
Close
Singapore Considers Lower Taxes for Fund Managers as Hong Kong Intensifies Talent Contest
US Retaliates Against Iran After Two American Troops Killed in Jordan
Bank of Asia BVI Enters Court-Supervised Liquidation After Regulators Find It Insolvent
Proposed U.S.-Saudi Nuclear Pact Could Permit Limited Uranium Enrichment Under International Safeguards
Netherlands Declares Water Shortage Emergency After Drought Pushes Rivers to Historic Lows
Iran Claims It Destroyed Bahrain’s Main Artificial Intelligence Center in Missile and Drone Strike
Brothers Andrew and Tristan Tate Who Turned "Toxic Masculinity" Into a Brand Arrested in Miami as Britain Seeks Their Extradition
Germany’s Economic Malaise Reopens the Sunday Shopping Debate
Reported CIA Mission Helped Clear the UAE’s Path to Advanced US AI Chips
Artificial Intelligence Capital Fuels Markets While Governments and Regulators Face Mounting Strategic Tests
China’s Moonshot’s Kimi K3 Narrows the Gap With Anthropic Through Scale, Openness and Lower Cost
Gold and Cash Seizure Puts Indonesia’s Senior Anti-Corruption Prosecutor Under Investigation
The Ledger Will Not Trust on Faith
Bank of England Warns Climate Shocks Could Trigger Sudden Asset Repricing
UK Treasury Places Microsoft, Google, AWS and Oracle Under New Financial Resilience Rules
Scottish Government Faces Pressure Over Delays in Vulnerable Group Background Checks
Crown Prosecution Service Authorises Additional Charges Against Andrew and Tristan Tate
NHS Approves At-Home Cancer Treatments for Rare Blood Disorders
Bank of England Gains Oversight of Major Cloud Providers Supporting UK Financial System
UK Government Plans Major Overhaul of English Local Councils Through New Unitary Authorities
British Steel Nationalisation Dispute Escalates as Chinese Owner Jingye Seeks Compensation
Bank of England Signals Interest Rates Will Stay High as It Warns of Financial Risks From Climate and AI
Trump Administration Pressures Banks to Restrict Financial Access for Undocumented Immigrants
Passenger Bound for Germany Refused to Sit Beside a Woman on a Plane — Then Slapped a Flight Attendant
Ukraine’s Leadership Rift Spills Into the Streets as Protesters Target Army Chief
Ukrainian Drone Barrage Kills Eight and Strikes Russian Logistics Network
Key Trends to Watch
Financial Conduct Authority Warns Cloud and Digital Risks Are Becoming a Financial Priority
Jeffrey Donaldson Appeals Sexual Abuse Conviction as Democratic Unionist Party Opens Review
Welsh Health Authorities Launch Emergency Meningitis Vaccination Programme for Students
Scottish Business Activity Falls for Third Month as Companies Face Rising Costs
Bank of England Regulators Demand Better Access to Digital Banking Services
United Kingdom Cuts Bilateral Aid to Several African Countries by Up to Ninety Per Cent
United Kingdom Introduces Tougher Deportation Rules After Rochdale Exploitation Scandal
NHS England Launches Wearable Technology Plan to Reduce Sepsis Deaths
Amazon Web Services Billing Error Sends Trillion-Dollar Invoices to British Companies
Bank of England Takes Direct Regulatory Role Over Major Global Cloud Providers
Extreme Summer Heat Drives Record Fire Risk and Rising Deaths Across Britain
United Kingdom Nationalisation of British Steel Sparks Diplomatic Dispute With China
United Kingdom Economy Shows Weak Growth Ahead of Major Autumn Budget
Andy Burnham Set to Become United Kingdom Prime Minister After Labour Leadership Victory
The Ten World Cup Finals That Defined Football History
Smartphones Are Getting More Expensive, Sales Are Collapsing, and Even Apple Admits: "Prices Will Rise"
The Monaco Bombing Has Become a Test of Ukraine’s Intelligence Accountability
Leadership Change and Strategic Rivalry Redraw the Political Map
Energy Risk, Uneven Growth and the New Geography of Global Capital
The AI Race Enters Its Infrastructure Era
Security and resilience remain long-term national priorities
Britain balances growth ambitions with public finance pressures
Regional devolution becomes a defining theme of the next Labour era
×