• Microsoft has limited Chinese firms' access to its cybersecurity early warning system.
• The decision follows speculation that Beijing was involved in hacking Microsoft SharePoint servers.
• Restricted firms will no longer receive "proof of concept" code related to cybersecurity vulnerabilities.
• The changes reflect ongoing concerns over cybersecurity laws in China requiring vulnerability disclosures.
• Microsoft previously faced leaks from Chinese partners, raising alarms about data security.

Microsoft has announced that it will limit access for some Chinese companies to its early warning system for cybersecurity vulnerabilities. This decision comes on the heels of a series of *sweeping hacking attempts* against Microsoft SharePoint servers, with allegations suggesting that the Chinese government may be involved, according to Reuters and Channel News Asia.

The restrictions particularly affect the Microsoft Active Protections Program (MAPP), which helps global security vendors, including those in China, by providing advance notice on cyber threats. Due to increased concerns over potential leaks, Microsoft decided that several Chinese firms would no longer receive "proof of concept" code, which mimics genuine malware behavior, thereby aiding both cybersecurity professionals and potentially hackers, according to India Times.

The implementation of these restrictions comes alongside worries over a Chinese law mandating that organizations report cybersecurity vulnerabilities to government authorities within 48 hours, creating the potential for sensitive information to be misused by government-cracking units. Microsoft’s prior engagement with Chinese MAPP partners and incidents of alleged data leaks have underscored longstanding security apprehensions, as noted by India Times.

Furthermore, Microsoft is committed to regularly reviewing the participation of firms in the MAPP to ensure compliance with its contractual terms, particularly regarding prohibitions on offensive cybersecurity activities. The company has indicated ongoing vigilance to prevent misuse of the advanced information provided, which underscores its proactive stance in securing data integrity amidst rising global cybersecurity threats, according to Reuters, Channel News Asia, and India Times.