{"id":1548611,"date":"2025-07-23T17:45:00","date_gmt":"2025-07-23T21:45:00","guid":{"rendered":"https:\/\/bugaluu.com\/news\/?p=1548611"},"modified":"2025-07-23T17:45:00","modified_gmt":"2025-07-23T21:45:00","slug":"china-linked-hackers-breach-us-nuclear-weapons-agency-in-sophisticated-operation","status":"publish","type":"post","link":"https:\/\/bugaluu.com\/news\/china-linked-hackers-breach-us-nuclear-weapons-agency-in-sophisticated-operation\/1548611\/","title":{"rendered":"China-Linked Hackers Breach US Nuclear Weapons Agency In Sophisticated Operation"},"content":{"rendered":"<p><span class=\"field field--name-title field--type-string field--label-hidden\">China-Linked Hackers Breach US Nuclear Weapons Agency In Sophisticated Operation<\/span><\/p>\n<div class=\"clearfix text-formatted field field--name-body field--type-text-with-summary field--label-hidden field__item\">\n<p>The National Nuclear Security Administration (NNSA) has been hit by a <strong>sophisticated cyberattack that exploited a previously unknown vulnerability in Microsoft SharePoint<\/strong>, and is being widely described by one of the most serious breaches of US defense infrastructure this year. Fingers in the West are pointing to Beijing.<\/p>\n<p>Hackers believed linked to the Chinese government used a zero-day exploit targeting on-premises versions of SharePoint to infiltrate over 50 organizations, including the <strong>agency responsible for the Navy\u2019s nuclear submarine reactors<\/strong>. China is vehemently denying the charge.<\/p>\n<p><a href=\"https:\/\/cms.zerohedge.com\/s3\/files\/inline-images\/doe.jpg?itok=wOHPHgbB\"><em>UPI\/Newscom<\/em><\/a><\/p>\n<p>The NNSA oversees both the production of nuclear reactors for submarines and the maintenance of the US nuclear arsenal. Cybersecurity experts are currently describing what&#8217;s known as an advanced remote code execution (RCE) attack.<\/p>\n<p>The vulnerability reportedly affected SharePoint Server 2019 and the Subscription Edition, which allowed attackers to bypass security protocols and execute arbitrary commands on targeted systems, as described in\u00a0<em><a href=\"https:\/\/www.bloomberg.com\/news\/articles\/2025-07-23\/us-nuclear-weapons-agency-breached-in-microsoft-sharepoint-hack\">Bloomberg<\/a>.<\/em><\/p>\n<p>The US Department of Energy is well-known to use Microsoft 365 cloud systems for a lot of its SharePoint work. &#8220;The department was minimally impacted due to its widespread use of the Microsoft M365 cloud and very capable cybersecurity systems,&#8221; a Department of Energy spokesperson conveyed in a statement to\u00a0<em>Bloomberg<\/em>. &#8220;A very small number of systems were impacted. All impacted systems are being restored.&#8221;<\/p>\n<p>It&#8217;s believed the hackers were able to gain unauthorized access, steal data, collect login credentials, and potentially move deeper into connected networks; however,\u00a0the <strong>Department of Energy has claimed no classified or sensitive nuclear data was compromised in the breach<\/strong>.<\/p>\n<p>&#8220;A very small number of systems were impacted. All impacted systems are being restored,&#8221; the statement continued.<\/p>\n<p>Officials credited the agency\u2019s early transition to Microsoft 365 cloud services for minimizing the impact of the breach, as the vulnerability specifically affected only on-premises SharePoint systems and did not impact the cloud-based platform.<\/p>\n<p>\u201cThe department experienced minimal impact thanks to its broad adoption of Microsoft M365 and robust cybersecurity infrastructure,\u201d a DOE spokesperson said.<\/p>\n<p>A Microsoft statement said <a href=\"https:\/\/www.thedailybeast.com\/microsoft-warns-china-sponsored-hackers-have-breached-united-states-national-nuclear-security-administration\/\">as follows<\/a>:<\/p>\n<p><em>Microsoft says it is investigating the breaches and that it has \u201chigh confidence\u201d those responsible will \u201ccontinue to integrate [these vulnerabilities] into their attacks,\u201d with others reported against government entities in Canada, Brazil, Spain, Indonesia, South Africa, the United Kingdom, and Switzerland.<\/em><\/p>\n<p>A significant flaw in a widely used Microsoft product allowed multiple Chinese-linked hacking groups to breach dozens of organizations across the globe, including at least two U.S. federal agencies. <a href=\"https:\/\/t.co\/JlZkyQPkHC\">https:\/\/t.co\/JlZkyQPkHC<\/a><\/p>\n<p>\u2014 POLITICO (@politico) <a href=\"https:\/\/twitter.com\/politico\/status\/1947691253765726601?ref_src=twsrc%5Etfw\">July 22, 2025<\/a><\/p>\n<p>And crucially, <strong>China&#8217;s government is flatly denying anything involvement<\/strong>. China\u2019s Embassy in Washington instead <a href=\"https:\/\/www.thedailybeast.com\/microsoft-warns-china-sponsored-hackers-have-breached-united-states-national-nuclear-security-administration\/\">described<\/a> the allegations as &#8220;unfounded speculation&#8221; and adding it &#8220;firmly oppose[s] smearing others without solid evidence.&#8221;<\/p>\n<p>But alarm bells have sounded in Washington, given especially that anything involving sensitive nuclear technology, a complex cyberbreach, and headlines involving &#8216;China&#8217; is sure to attract attention and quick defensive cyber-action.<\/p>\n<\/div>\n<p>      <span class=\"field field--name-uid field--type-entity-reference field--label-hidden\"><a title=\"View user profile.\" href=\"https:\/\/cms.zerohedge.com\/users\/tyler-durden\" class=\"username\">Tyler Durden<\/a><\/span><br \/>\n<span class=\"field field--name-created field--type-created field--label-hidden\">Wed, 07\/23\/2025 &#8211; 13:45<\/span><\/p>\n<p>\u200b<a href=\"https:\/\/www.zerohedge.com\/geopolitical\/china-linked-hackers-breach-us-nuclear-weapons-agency-sophisticated-hack\" target=\"_blank\" class=\"\">https:\/\/www.zerohedge.com\/geopolitical\/china-linked-hackers-breach-us-nuclear-weapons-agency-sophisticated-hack<\/a>\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"<p>China-Linked Hackers Breach US Nuclear Weapons Agency In Sophisticated Operation The National Nuclear Security Administration (NNSA) has been hit by a sophisticated cyberattack that exploited&#8230;<\/p>\n","protected":false},"author":0,"featured_media":1548612,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-1548611","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","wpcat-1-id"],"_links":{"self":[{"href":"https:\/\/bugaluu.com\/news\/wp-json\/wp\/v2\/posts\/1548611","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bugaluu.com\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bugaluu.com\/news\/wp-json\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/bugaluu.com\/news\/wp-json\/wp\/v2\/comments?post=1548611"}],"version-history":[{"count":0,"href":"https:\/\/bugaluu.com\/news\/wp-json\/wp\/v2\/posts\/1548611\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/bugaluu.com\/news\/wp-json\/wp\/v2\/media\/1548612"}],"wp:attachment":[{"href":"https:\/\/bugaluu.com\/news\/wp-json\/wp\/v2\/media?parent=1548611"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bugaluu.com\/news\/wp-json\/wp\/v2\/categories?post=1548611"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bugaluu.com\/news\/wp-json\/wp\/v2\/tags?post=1548611"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}