A breach at the Kansas City National Security Campus, a critical US nuclear weapons facility, was carried out by foreign hackers exploiting unpatched Microsoft SharePoint vulnerabilities. The incident highlights the need for improved security measures in federal IT and operational technology systems, with conflicting attribution pointing to either Chinese or Russian threat actors.