London Daily

Focus on the big picture.
Tuesday, Jul 07, 2026

Microsoft hack: White House warns of 'active threat' of email attack

Microsoft hack: White House warns of 'active threat' of email attack

The US is expressing growing concern over a hack on Microsoft's Exchange email software that the tech company has blamed on China.

"This is an active threat," White House press secretary Jen Psaki said on Friday. "Everyone running these servers - government, private sector, academia - needs to act now to patch them."

Microsoft said hackers had used its mail server to attack their targets.

It is reported that tens of thousands of US organisations may be impacted.

The US has long accused the Chinese government of cyber-espionage, something Beijing denies.

Ms Psaki told reporters that the White House was "concerned that there are a large number of victims" and said the vulnerabilities found in Microsoft's servers "could have far reaching impacts".

On Saturday, the US National Security Council said it was "essential that any organisation with a vulnerable server take immediate measures" to determine if they had been targeted.


What do we know about the hack?


Microsoft executive Tom Burt revealed the breach in a blog post on Tuesday and announced updates to counter security flaws which he said had allowed hackers to gain access to Microsoft Exchange servers.

The Microsoft Threat Intelligence Center (MSTIC) attributed the attacks with "high confidence" to a "state-sponsored threat actor" based in China which they named Hafnium.

The tech giant said Hafnium had tried to steal information from groups such as infectious disease researchers, law firms, higher education institutions and defence contractors.

A spokesman for the Chinese government told Reuters news agency that the country was not behind the hack. Beijing has repeatedly rejected US accusations of cyber-crime.

More than 20,000 organisations have been compromised in the US with many more affected worldwide, Reuters reported.

Brian Krebs, an industry expert and blogger, put the number higher - citing multiple security sources.

"At least 30,000 organizations across the United States - including a significant number of small businesses, towns, cities and local governments - have over the past few days been hacked by an unusually aggressive Chinese cyber-espionage unit that's focused on stealing email from victim organizations," he wrote in a blog post.

Mr Krebs warned attacks had "dramatically stepped up" since Microsoft's announcement.

What is Microsoft doing?


News of the breach prompted the US Cybersecurity and Infrastructure Security Agency (Cisa) to release an emergency directive telling agencies and departments to take urgent action.

Jake Sullivan, the White House National Security Adviser, has also urged network owners to download the security patches as soon as possible.


Microsoft has not confirmed the reported figures but said in a further statement on Friday that it was working closely with US government agencies.

It told customers "the best protection" was "to apply updates as soon as possible across all impacted systems".

However, it also said it was deploying some mitigation techniques designed to help those who are unable to upgrade quickly, but warned they were not "a remediation if your Exchange servers have already been compromised, nor are they full protection against attack".

This is the eighth time in the past 12 months that Microsoft has publicly accused nation-state groups of targeting institutions critical to civil society.

Microsoft said the attack was in no way related to the SolarWinds attack, which hit US government agencies late last year.

Although Hafnium is based in China, it allegedly conducts its operations primarily from leased virtual private servers in the US, Microsoft said.

China presence


While many US tech firms have had a tumultuous relationship with the Chinese government, Microsoft has maintained a mainland presence since 1992.

Unlike Facebook and Twitter, Microsoft's business-oriented social media platform LinkedIn is still accessible in China.

So, too, is its search engine Bing, although locally-grown Baidu dominates the search market.

Newsletter

Related Articles

0:00
0:00
Close
UK Met Office Issues Heatwave Alerts for London and Southern England
Keir Starmer Blocks Earlier World Cup Kick-Off Time for England Match Against Mexico
NHS Digital Transformation and Media Consolidation Highlight UK Policy Priorities
UK Government Pushes Digital Trade Rules to Cut Export Costs for Businesses
Bank of England Plans Leverage Rule Changes to Support Government Bond Market
UK Police Operation Targets Organised Immigration Crime Networks With Hundreds of Arrests
Yvette Cooper Calls for Global AI Rules to Prevent Security Risks
NHS Begins Major AI Expansion Through £10 Billion Digital Investment Programme
UK Government Tightens Rules on Political Donations to Limit Foreign Influence
Keir Starmer Defends UK Defence Spending Plan at NATO Summit in Turkey
Comcast’s Sky Agrees £1.6 Billion Deal to Acquire ITV Media and Entertainment Division
Senior NHS Doctors Vote in Favour of Renewed Strike Action Over Pay Dispute
Andy Burnham Set to Succeed Keir Starmer as Labour Leadership Nominations Open
Microsoft Lays Off 4,800 Employees and Xbox Suffers the Hardest Blow
Deep Purple Has Released Its Best Album in Decades
Office for National Statistics Updates Historical Investment Data Review to Improve Accuracy
Department for Science, Innovation and Technology Highlights Economic Gains From Digital Inclusion
Debate Intensifies Over UK Defence Strategy and Domestic Security Priorities
Report Warns Full Transport Accessibility Could Add £176 Billion to UK Economy Annually
Medicines Regulator Approves First Targeted Treatment for Advanced Merkel Cell Skin Cancer
Government Commits £22 Million to Brighton Seafront Infrastructure Renewal and Transport Safety
National Security Bill Returns to House of Commons Amid Calls to Protect Humanitarian Work
Government Tightens Overseas Political Donation Rules to Strengthen Safeguards Against Foreign Influence
NHS Maternity Reform Expands Central Oversight After Critical National Review
Dover Border Warnings Highlight Post-Brexit Pressure on Cross-Channel Trade
Private Nuclear Consortium Advances £35 Billion Small Reactor Strategy in UK
UK Labour Leadership Signals Shift Toward Reindustrialisation and Regional Power
House of Lords Debates Rail Nationalisation Bill to Create Great British Railways
Scottish Affairs Committee Expands Inquiry Into SNP Financial Conduct
Evri Launches £1.2 Million Defamation Case Against BBC Over Panorama Investigation
Port of Dover Warns of Border Delays as EU Entry-Exit System Looms
Nigel Farage Referred to Standards Watchdog Over Alleged Undeclared Benefits
UK Government Faces Scrutiny Over Claimed AI Datacentre Investment After FOI Findings
UK and India Finalise Trade Agreement Rules Ahead of Mid-July Implementation
UK Government Establishes National Maternity Commissioner After Major Review of NHS Care Failures
Private Consortium Plans £35 Billion UK Nuclear Programme Targeting Small Modular Reactor Rollout
Andy Burnham Sets Out Ten-Year Reindustrialisation and Devolution Plan as Leadership Transition to UK Premiership Advances
Morocco and France Advance as 2026 FIFA World Cup Enters Quarterfinals.
Historic 2026 Tour de France Opens in Barcelona With Revamped Team Time Trial.
Global Mergers and Acquisitions Approach $4 Trillion Defying Geopolitical Tumult.
Negotiators Advance 20-Point Framework for Gaza Ceasefire and Demilitarization.
OECD Warns Middle East Conflict Will Depress Global Economic Growth.
Ukrainian Drones Strike Major Oil Terminal in St. Petersburg.
World Meteorological Organization Issues Urgent Alert Over Rapidly Intensifying El Niño.
United States Commemorates 250th Anniversary With Diplomatic Summits and Global Flotilla.
Iran Begins Days-Long Funeral for Supreme Leader Khamenei Amid Strait of Hormuz Standoff.
Technology giant reports surging carbon emissions driven by artificial intelligence infrastructure demands.
Artificial intelligence adoption accelerates workforce reductions across the technology and financial sectors.
Global technology and financial conglomerates collaborate to launch a new stablecoin standard.
United States regulators lift export restrictions on a major frontier artificial intelligence model.
×