News

What to know about ToolShell, the SharePoint threat under mass exploitation
The name was coined by Dinh Ho Anh, a researcher from Khoa of Viettel Cyber Security, who developed the exploit. The ...
SecurityWeek1d
ToolShell Zero-Day Attacks on SharePoint: First Wave Linked to China, Hit High-Value Targets
More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the ...
US agency overseeing nuclear weapons breached in Microsoft SharePoint attack
Microsoft SharePoint zero-day flaws were exploited to breach over 50 organizations, including the National Nuclear Security ...
Infosecurity Magazine1d
SharePoint 'ToolShell' Vulnerabilities Exploited by Chinese Nation-State Hackers
Microsoft has observed three China-based threat actors, Linen Typhoon, Violet Typhoon and Storm-2603, exploiting the ...
Microsoft releases emergency security updates to fix SharePoint zero-day flaws — everything you need to know
M icrosoft has released two emergency patches to address zero-day vulnerabilities that have been found in SharePoint RCE.
Critical Sharepoint security vulnerability: First patches are available
Microsoft has now released a patch, but attackers were not idle over the weekend. Dozens of SharePoint installations fell ...
TweakTown3d
Hackers use Microsoft service to launch serious global attack at governments and businesses
At least 85 servers worldwide have been compromised through a Microsoft service vulnerability that has been used to achieve ...
The Hacker News3d
Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Global Organizations
The zero-day flaw, tracked as CVE-2025-53770 (CVSS score: 9.8), has been described as a variant of CVE-2025-49706 (CVSS score: 6.3), a spoofing bug in Microsoft SharePoint Server that was addressed by ...