Microsoft SharePoint Hack Linked to Chinese Teams Affected US Agencies

Microsoft's SharePoint software, which experienced a significant cybersecurity breach in July 2025, was supported by engineering teams based in China, according to a ProPublica investigation. The breach, attributed by Microsoft to Chinese state-sponsored hackers, allowed attackers to gain control of SharePoint servers and install unauthorized software and backdoors for future access. Microsoft has confirmed the existence of these China-based support teams and stated that work is underway to relocate these operations to another location.