Fermilab Targeted in Cyberattack Exploiting Microsoft SharePoint Flaw
Hackers have targeted Fermilab, one of the U.S. Department of Energy’s (DOE) 17 national laboratories, in a recent cyberattack exploiting a Microsoft SharePoint vulnerability, according to a Bloomberg News report on Tuesday.
The attack is part of a broader global cyber espionage campaign leveraging flaws in SharePoint server software, initially identified in May 2025.
Attack Contained, No Sensitive Data Compromised
A DOE spokesperson confirmed to Bloomberg that attackers attempted to access Fermilab’s SharePoint servers, but emphasised that the breach was contained swiftly:
“The attackers were quickly identified, and the impact was minimal, with no sensitive or classified data accessed,” said the spokesperson.
The spokesperson also confirmed that Fermilab’s servers have since been restored and are operating normally.
Microsoft Patch Failed to Close Security Gaps
The SharePoint vulnerability in question stems from a critical flaw Microsoft attempted to patch last month. However, security experts say the patch failed to fully address the issue, leaving systems worldwide exposed to exploitation.
This latest incident underscores the growing cybersecurity risks tied to enterprise software systems, even those used by high-security government institutions.
Broader Impact on U.S. Energy Infrastructure
The U.S. Department of Energy revealed last week that the SharePoint flaw also impacted other systems, including those under the National Nuclear Security Administration (NNSA), which oversees the U.S. nuclear weapons stockpile.
Officials stated that all affected systems across the DOE are currently being restored, but did not confirm whether any classified environments were compromised.
About Fermilab
Founded in 1967 and based in Illinois, Fermilab is known as America’s particle physics and accelerator laboratory. The lab plays a pivotal role in researching high-energy physics and advancing national science and technology initiatives.
As a leading institution within the U.S. energy and research ecosystem, any cybersecurity incident at Fermilab raises concerns about the broader security of sensitive scientific data and infrastructure.
Microsoft, DOE, and Fermilab Decline Additional Comments
As of now, Microsoft, Fermilab, and the U.S. Department of Energy have not responded to Reuters’ requests for further comment on the breach or ongoing investigations.
Key Takeaways
- Fermilab was targeted in a cyberattack exploiting a SharePoint vulnerability.
- No sensitive or classified data was accessed, according to the DOE.
- The Microsoft patch failed to fully address the flaw identified in May.
- The incident is part of a wider global espionage campaign.
- The DOE is restoring affected systems, including those of the NNSA.
