London Daily

Focus on the big picture.
Sunday, Jul 12, 2026

Microsoft hack: White House warns of 'active threat' of email attack

Microsoft hack: White House warns of 'active threat' of email attack

The US is expressing growing concern over a hack on Microsoft's Exchange email software that the tech company has blamed on China.

"This is an active threat," White House press secretary Jen Psaki said on Friday. "Everyone running these servers - government, private sector, academia - needs to act now to patch them."

Microsoft said hackers had used its mail server to attack their targets.

It is reported that tens of thousands of US organisations may be impacted.

The US has long accused the Chinese government of cyber-espionage, something Beijing denies.

Ms Psaki told reporters that the White House was "concerned that there are a large number of victims" and said the vulnerabilities found in Microsoft's servers "could have far reaching impacts".

On Saturday, the US National Security Council said it was "essential that any organisation with a vulnerable server take immediate measures" to determine if they had been targeted.


What do we know about the hack?


Microsoft executive Tom Burt revealed the breach in a blog post on Tuesday and announced updates to counter security flaws which he said had allowed hackers to gain access to Microsoft Exchange servers.

The Microsoft Threat Intelligence Center (MSTIC) attributed the attacks with "high confidence" to a "state-sponsored threat actor" based in China which they named Hafnium.

The tech giant said Hafnium had tried to steal information from groups such as infectious disease researchers, law firms, higher education institutions and defence contractors.

A spokesman for the Chinese government told Reuters news agency that the country was not behind the hack. Beijing has repeatedly rejected US accusations of cyber-crime.

More than 20,000 organisations have been compromised in the US with many more affected worldwide, Reuters reported.

Brian Krebs, an industry expert and blogger, put the number higher - citing multiple security sources.

"At least 30,000 organizations across the United States - including a significant number of small businesses, towns, cities and local governments - have over the past few days been hacked by an unusually aggressive Chinese cyber-espionage unit that's focused on stealing email from victim organizations," he wrote in a blog post.

Mr Krebs warned attacks had "dramatically stepped up" since Microsoft's announcement.

What is Microsoft doing?


News of the breach prompted the US Cybersecurity and Infrastructure Security Agency (Cisa) to release an emergency directive telling agencies and departments to take urgent action.

Jake Sullivan, the White House National Security Adviser, has also urged network owners to download the security patches as soon as possible.


Microsoft has not confirmed the reported figures but said in a further statement on Friday that it was working closely with US government agencies.

It told customers "the best protection" was "to apply updates as soon as possible across all impacted systems".

However, it also said it was deploying some mitigation techniques designed to help those who are unable to upgrade quickly, but warned they were not "a remediation if your Exchange servers have already been compromised, nor are they full protection against attack".

This is the eighth time in the past 12 months that Microsoft has publicly accused nation-state groups of targeting institutions critical to civil society.

Microsoft said the attack was in no way related to the SolarWinds attack, which hit US government agencies late last year.

Although Hafnium is based in China, it allegedly conducts its operations primarily from leased virtual private servers in the US, Microsoft said.

China presence


While many US tech firms have had a tumultuous relationship with the Chinese government, Microsoft has maintained a mainland presence since 1992.

Unlike Facebook and Twitter, Microsoft's business-oriented social media platform LinkedIn is still accessible in China.

So, too, is its search engine Bing, although locally-grown Baidu dominates the search market.

Newsletter

Related Articles

0:00
0:00
Close
UK Medical Chiefs Update Health Guidance to Promote Everyday Physical Activity
Office of Communications Keeps Wikipedia Under Review Under UK Online Safety Rules
UK Defence Ministry Expands Deep-Strike Capability Through Precision Missile Programme
Russell Group Universities Warn Funding Cuts Could Damage NHS Workforce Training
UK Parliament Calls for National Emergency Broadcast as Heatwave Conditions Intensify
UK and Netherlands Strengthen Naval Cooperation With New Amphibious Defence Partnership
UK Defence Ministry Joins International Missile Programme With One Hundred and Ninety Million Pound Investment
Bank of England Warns Middle East Conflict and AI Risks Could Pressure UK Economy
UK Government Introduces New Rules to Limit Foreign Influence in Political Donations
UK and France Prepare Naval Mission to Protect Shipping Through Strait of Hormuz
United States Pressures UK to Increase Defence Spending at NATO Summit
Bank of England Warns Artificial Intelligence Investment Boom Could Create Financial Stability Risks
Bank of England Begins Direct Oversight of Critical Technology Providers Supporting UK Finance
Andy Burnham Set to Become UK Prime Minister After Labour Leadership Race Clears Path to Downing Street
Scottish Fishing Industry Calls for Emergency Support Amid Rising Costs
UK Supports Stronger European Response to Russian Actions in Ukraine
Devon and Cornwall Police Release Suspect in Ann Widdecombe Murder Investigation
Scottish MPs Demand More Government Support for Fishing Industry
UK Aviation Sector Faces New Rules as Parliament Reviews Passenger Protection Reforms
King’s College London Disciplines Students Over Pro-Palestine Campus Protests
Ministry of Defence Expands Military Capabilities Through New Precision Strike Investment
United Kingdom Condemns Russian Treatment of Ukrainian Children at International Security Forum
House of Lords Reviews Civil Aviation Bill to Strengthen Passenger Rights and UK Aviation Competitiveness
UK Aerospace and Defence Industries Contribute Nearly Forty-Seven Billion Pounds to Economy
UK Government Advances Consultation on Possible Social Media Ban for Children Under Sixteen
United Kingdom Ratifies Global High Seas Treaty to Protect Marine Biodiversity
United Kingdom Joins United States Precision Strike Missile Programme With One Hundred Ninety Million Pound Investment
UK Senior NHS Doctors Vote for Further Strike Action Over Pay and Contract Disputes
BBC Leadership Resigns After Donald Trump Launches Ten Billion Dollar Defamation Lawsuit
UK Fiscal Watchdog Warns Andy Burnham Government Faces One Hundred Billion Pound Budget Challenge
The AI Invoice Shock: Layoffs Didn't Save Managers Money — They Cost Them More
Concern: Sexually Transmitted Bacterium Among Men Develops Antibiotic Resistance
Following Massive Investor Demand: SK Hynix Raises 26.5 Billion Dollars on Nasdaq
Passenger Partially Pulled Out of Ryanair Jet After Cabin Window Fails Mid-Flight
After Four Years, and Under a Heavy Veil of Secrecy: King Charles Meets His Grandchildren, Harry and Meghan's Children
Cross-Party MPs Call for National Climate Emergency Broadcast
Bayeux Tapestry Arrives in the United Kingdom for Landmark Exhibition
United Kingdom Launches Modern Slavery Prevention Programme in Vietnam
Police Warn Against Misinformation Following Disorder in Glasgow
Pension Reform Takes Effect to Consolidate Workplace Savings Industry
Treasury and Bank of England Monitor Economy as Energy Price Pressures Ease
Government Orders Treasury Reform of Disciplinary Procedures Following Civil Servant's Death
Ofcom to Require Major Technology Platforms to Block Scam Advertisements
Labour Apologizes Over Gaza Position in Bid to Rebuild Support
High Court Rules UK-France Asylum Agreement Protection Cuts Were Unlawful
Metropolitan Police Open Murder Investigation Into Death of Former MP Ann Widdecombe
University College London Report Proposes Replacing Council Tax and Stamp Duty With National Property Tax
Treasury Places Amazon, Google, Microsoft and Oracle Under New UK Financial System Oversight Rules
Severe Heatwave Drives Dangerous Ground-Level Ozone Pollution Across Two Thirds of European Union
Westminster in Freefall as Farage's By-Election Gamble Triggers Broader Systemic Crises
×