Microsoft is urging organizations to rotate machine keys for on-premises SharePoint Servers — an indicator that attackers are stealing the keys to enable further attacks, according to researchers.