Order byBest matchMost fresh

Hackers Hit Zero-Day Flaw in Microsoft's SharePoint

Digest more
Microsoft Releases Emergency Updates Amid Active Exploitation of SharePoint Zero-Day Vulnerability Chain
Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code execution on SharePoint, resulting in the exploitation of at least 54 organizations worldwide.

Continue reading

PCMag on MSN · 4d
Mass Exploitation: Hackers Hit Zero-Day Flaw in Microsoft's SharePoint
Microsoft SharePoint zero-day exploited in RCE attacks, no patch available
Tally of Microsoft victims surges to 400 as hackers exploit SharePoint flaw
The number of companies and organizations compromised by a security vulnerability in Microsoft Corp.’s SharePoint servers is increasing rapidly, with the tally of victims soaring more than sixfold in ...

Continue reading

Microsoft says China-based hackers exploiting critical SharePoint vulnerabilities to deploy Warlock ransomware — three China-affiliated threat actors seen taking advantage
Microsoft fixes SharePoint zero-day exploits used in cyberattacks and ransomware - how to patch them
Microsoft probing if Chinese hackers learned SharePoint flaws through alert, Bloomberg News reports
A security patch Microsoft released this month failed to fully fix a critical flaw in the U.S. tech giant's SharePoint server software, opening the door to a sweeping global cyber espionage effort.

Continue reading

Hackers attack Microsoft SharePoint, targeting organizations like U.S nuclear security
CSOonline · 1d
Microsoft’s incomplete SharePoint patch led to global exploits by China-linked hackers
The Hacker News5d
Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Company Servers
The U.S. Cybersecurity and Infrastructure Security Agency (CISA), in an alert, said it's aware of active exploitation of CVE-2025-53770, which enables unauthenticated access to SharePoint systems and arbitrary code execution over the network.
SecurityWeek1d
ToolShell Attacks Hit 400+ SharePoint Servers, US Government Victims Named
More information has emerged on the ToolShell SharePoint zero-day attacks, including impact, victims, and threat actors.
SharePoint vulnerability with 9.8 severity rating under exploit across globe
The vulnerability, tracked as CVE-2025-53770, carries a severity rating of 9.8 out of a possible 10. It gives unauthenticated remote access to SharePoint Servers exposed to the Internet. Starting Friday,
Krebs on Security4d
Microsoft Fix Targets Attacks on SharePoint Zero-Day
Microsoft also has issued a patch for a related SharePoint vulnerability — CVE-2025-53771; Microsoft says there are no signs of active attacks on CVE-2025-53771, and that the patch is to provide more robust protections than the update for CVE-2025-49706.
Microsoft probing if Chinese hackers learned SharePoint flaws through alert, Bloomberg News reports
Microsoft is investigating whether a leak from its early alert system for cybersecurity companies allowed Chinese hackers to exploit flaws in its SharePoint service before they were patched, Bloomberg News reported on Friday.
Feedback