Microsoft 365 outage impacts Exchange Online, Teams, Sharepoint
Microsoft is working on fixing an ongoing and widespread Microsoft 365 outage that is impacting multiple services and features, including Exchange Online, Microsoft Teams, and SharePoint Online.
Since this outage started roughly six hours ago, Downdetector has received thousands of reports, with affected users saying they're also experiencing problems connecting with other services, such as OneDrive, Purview, Copilot, and Outlook Web and Desktop.
"We're investigating an issue impacting users attempting to access Exchange Online or functionality within Microsoft Teams calendar. For more information, please refer to MO941162 in the admin center," the company said when it acknowledged the issues 6 hours ago.
"While we continue to work on mitigating the issue, we've added a comprehensive list of impacted services and scenarios to the more info section."
In the admin center incident report, Microsoft confirmed that the outage prevents customers from accessing Exchange Online via Outlook on the web, Outlook desktop client, Representational State Transfer (REST), and Exchange ActiveSync (EAS).
The company also says some customers might have issues performing actions within Microsoft Fabric, Microsoft Bookings, and Microsoft Defender for Office365.
While Remond has only shared that the outage was caused by a "recent change," the company has already deployed a fix on the impacted infrastructure, restarted impacted systems, and is monitoring the situation.
"We've started to deploy the fix which is currently progressing through the affected environment. While this progresses, we're beginning manual restarts on a subset of machines that are in an unhealthy state," Microsoft said one hour ago.
"We're monitoring the progress of the fix, which has been deployed to approximately 60% of the affected environments. We're continuing our manual restarts on the remaining impacted machines."
Microsoft's Office service health and the Microsoft 365 network health status pages currently show no issues with the company's network health status and availability, internet service provider availability, and the customer's network infrastructure.
In July, another worldwide outage took down multiple Microsoft 365 and Azure services, including the admin center, Intune, Entra, Power BI, and Power Platform services.
One day later, the company admitted that the nine-hour outage was triggered by a distributed denial-of-service (DDoS) attack.
Salt Typhoon hackers backdoor telcos with new GhostSpider malware
Meta removes over 2 million accounts pushing pig butchering scams
CVE-2025-22224 VMware ESXi and Workstation TOCTOU Race Condition Vulnerability
CVE-2020-29574 CyberoamOS (CROS) SQL Injection Vulnerability
CVE-2022-43769 Hitachi Vantara Pentaho BA Server Special Element Injection Vulnerability
CVE-2018-19410 Paessler PRTG Network Monitor Local File Inclusion Vulnerability
CVE-2022-43939 Hitachi Vantara Pentaho BA Server Authorization Bypass Vulnerability
CVE-2024-40890 Zyxel DSL CPE OS Command Injection Vulnerability
CVE-2025-2783 Google Chromium Mojo Sandbox Escape Vulnerability
CVE-2017-0148 Microsoft SMBv1 Server Remote Code Execution Vulnerability
CVE-2018-8639 Microsoft Windows Win32k Improper Resource Shutdown or Release Vulnerability
CVE-2024-49035 Microsoft Partner Center Improper Access Control Vulnerability
InformationalGraphQL Endpoint Supports Introspection
HighXPath Injection
InformationalSec-Fetch-Mode Header is Missing
InformationalEmail address found in WebSocket message
InformationalCORS Header
CWE-1297 Unprotected Confidential Information on Device is Accessible by OSAT Vendors
CWE-180 Incorrect Behavior Order: Validate Before Canonicalize
CWE-1286 Improper Validation of Syntactic Correctness of Input
MediumCWE-95 Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')
CWE-1299 Missing Protection Mechanism for Alternate Hardware Interface
CWE-1266 Improper Scrubbing of Sensitive Data from Decommissioned Device
Free online web security scanner