Skip to content
  • Home
  • Cyber Map
  • About Us – Contact
  • Disclaimer
  • Terms and Rules
  • Privacy Policy
Cyber Web Spider Blog – News

Cyber Web Spider Blog – News

Globe Threat Map provides a real-time, interactive 3D visualization of global cyber threats. Monitor DDoS attacks, malware, and hacking attempts with geo-located arcs on a rotating globe. Stay informed with live logs and archive stats.

  • Home
  • Cyber Map
  • Cyber Security News
  • Security Week News
  • The Hacker News
  • How To?
  • Toggle search form
Turla Hackers Exploit SharePoint Vulnerability in France

Turla Hackers Exploit SharePoint Vulnerability in France

Posted on July 13, 2026 By CWS

The notorious cyber espionage group known as Turla has once again made headlines after exploiting a vulnerability in Microsoft SharePoint to infiltrate French networks. This group, linked to Russia’s Federal Security Service, has been active for over twenty years, targeting sensitive sectors such as government and defense across various nations.

Turla’s Diverse Infiltration Techniques

Turla is recognized for its diverse array of methods to gain unauthorized access to networks. These include using phishing emails, compromised websites, and vulnerable systems. Their strategy often starts with seemingly innocuous files or poorly secured servers, eventually allowing deeper penetration into organizational networks.

According to a report by France’s Cyber Crisis Coordination Center (C4) and CERT-FR, Turla’s operations have impacted not only prominent governmental entities but also ordinary businesses and individuals. This highlights the group’s capacity to exploit a wide range of targets as part of their espionage infrastructure.

SharePoint Flaw Exploited for Access

In 2019, Turla hackers took advantage of a vulnerability in Microsoft SharePoint to compromise a server within a French justice-sector organization. This server, which hosted a continuing-education platform, provided access to a vast number of user accounts, illustrating how a single security flaw can lead to extensive privacy breaches.

Turla’s campaigns have impacted various sectors, including ministries, diplomatic bodies, and technology firms. Their techniques often involve using compromised systems as intermediary relays, making detection more challenging by blending malicious activities with legitimate network traffic.

Persistent Threat and Evolving Tactics

Turla is known for deploying custom malware families such as Uroburos and Kazuar, alongside publicly available tools like Mimikatz and Metasploit to mask their intrusions as normal activity. Their operations remain active against Ukraine, NATO countries, and EU member states, contributing to intelligence gathering during geopolitical conflicts.

The group has demonstrated a sophisticated ability to chain multiple vulnerabilities, including software flaws and social engineering attacks, to compromise targets. Their infrastructure relies on compromised servers and networks, ensuring their operations remain concealed from detection.

The insights from French investigators stress the critical need for rapid security patch implementation, particularly for internet-facing services like SharePoint. Organizations are advised to monitor for unusual server behavior, restrict administrative access, and evaluate if compromised systems are used as part of larger attacks.

Overall, the findings emphasize the importance of treating breaches as potentially far-reaching incidents, impacting communications and sensitive data well beyond the initially affected systems. Strengthening proactive defense measures is crucial to preventing significant security incidents and financial damage.

Cyber Security News Tags:cyber attack, Cybercrime, Cybersecurity, Espionage, France, Malware, network security, SharePoint, Turla, Vulnerabilities

Post navigation

Previous Post: ModHeader Browser Extension Removed by Google and Microsoft
Next Post: AI-Powered Scripts Exploit Active Directory Vulnerabilities

Related Posts

Hackers Exploit CitrixBleed Flaw Within Hours of Disclosure Hackers Exploit CitrixBleed Flaw Within Hours of Disclosure Cyber Security News
Cybercriminals Exploit QEMU for Hidden Attacks Cybercriminals Exploit QEMU for Hidden Attacks Cyber Security News
Severe WordPress Plugin Flaw Risks Website Takeover Severe WordPress Plugin Flaw Risks Website Takeover Cyber Security News
April 2026 Microsoft Patch Tuesday: Key Vulnerabilities April 2026 Microsoft Patch Tuesday: Key Vulnerabilities Cyber Security News
Nimbus Manticore Attacking Defense and Telecom Sectors With New Malware Nimbus Manticore Attacking Defense and Telecom Sectors With New Malware Cyber Security News
Authorities Seize BreachForums New Clearnet Cybercrime Marketplace Domain Authorities Seize BreachForums New Clearnet Cybercrime Marketplace Domain Cyber Security News

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Recent Posts

  • AI ‘Intelligent Worm’ Threatens Cybersecurity Evolution
  • CISA Alerts on Vulnerabilities in Joomla Extensions
  • AI Systems Under Siege by Internet Scans: MCP Servers at Risk
  • AI-Powered Scripts Exploit Active Directory Vulnerabilities
  • Turla Hackers Exploit SharePoint Vulnerability in France

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Archives

  • July 2026
  • June 2026
  • May 2026
  • April 2026
  • March 2026
  • February 2026
  • January 2026
  • December 2025
  • November 2025
  • October 2025
  • September 2025
  • August 2025
  • July 2025
  • June 2025
  • May 2025

Recent Posts

  • AI ‘Intelligent Worm’ Threatens Cybersecurity Evolution
  • CISA Alerts on Vulnerabilities in Joomla Extensions
  • AI Systems Under Siege by Internet Scans: MCP Servers at Risk
  • AI-Powered Scripts Exploit Active Directory Vulnerabilities
  • Turla Hackers Exploit SharePoint Vulnerability in France

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Copyright © 2026 Cyber Web Spider Blog – News.

Powered by PressBook Masonry Dark