Microsoft is investigating whether a leak from its early alert system for cybersecurity companies allowed Chinese hackers to exploit flaws in its SharePoint service before they were patched, Bloomberg News reported on Friday.

Microsoft contained a major SharePoint security flaw, amid fresh questions about the future of its legacy on-premises software.

Microsoft is investigating a potential leak within its MAPP program, suspecting that Chinese state-backed hackers exploited SharePoint vulnerabilities

New estimates regarding the recently-exploited Microsoft SharePoint vulnerabilities now evaluate that as many as 400 organizations may have been targeted.

Microsoft warns of hackers exploiting SharePoint vulnerabilities to breach critical organizations, including U.S. nuclear security.

Microsoft confirms Chinese hackers exploited a SharePoint flaw; Patches now available. Cloud-based Microsoft 365 not affected.

Victims of the recent global hacking campaign include the National Institutes of Health and the National Nuclear Security Administration, officials said.

While organizations may have a variety of reasons for sticking with on-premises Microsoft SharePoint servers, widespread attacks targeting the servers are grounds to “re-do their risk calculus” and newly explore cloud-based options,