Microsoft has restricted Chinese companies' early access to detailed cybersecurity vulnerability information through its Microsoft Active Protections Program (MAPP). This change, implemented starting in July 2025, follows an investigation into a potential leak linked to a series of cyberattacks exploiting flaws in Microsoft's SharePoint software. Under the new policy, Chinese firms will receive only general descriptions of vulnerabilities rather than detailed information or "proof of concept" code. The move aims to prevent the misuse of advance notifications, which may have facilitated targeted cyberattacks. Microsoft spokesperson David Cuddy confirmed the policy adjustment, emphasizing the company's efforts to enhance cybersecurity protections amid concerns over the exploitation of its technology.