Microsoft has accused Chinese state-linked hacker groups of exploiting vulnerabilities in its SharePoint server software to carry out cyberattacks targeting global organizations. The attackers, identified as Lilin Typhoon, Violet Typhoon, and Storm-2603, infiltrated on-premises servers to steal sensitive data. Microsoft confirmed its cloud-based SharePoint was not breached and has released security updates, urging users to patch systems immediately. The hackers reportedly used encryption to maintain ongoing access. Investigations continue as Microsoft warns of potential repeat attacks on unpatched systems.