News

What to know about ToolShell, the SharePoint threat under mass exploitation
The name was coined by Dinh Ho Anh, a researcher from Khoa of Viettel Cyber Security, who developed the exploit. The ...
SharePoint vulnerability with 9.8 severity rating under exploit across globe
The vulnerability, tracked as CVE-2025-53770, carries a severity rating of 9.8 out of a possible 10. It gives unauthenticated ...
Microsoft SharePoint attack: Officials issue warning about 'active exploitation'
Federal cybersecurity officials have issued a warning to Microsoft users about a security flaw allowing hackers to access to ...
Microsoft says Chinese hacking groups exploited SharePoint vulnerability in attacks
Two Chinese nation-state actors and one China-based threat actor have tried to exploit the vulnerability for weeks, Microsoft ...
Microsoft SharePoint under 'active exploitation,' Homeland Security's CISA says
Eye Security, a cybersecurity firm, says it "identified active large-scale exploitation" of the new vulnerability "being used ...
CPO Magazine1d
Microsoft Releases Emergency Updates Amid Active Exploitation of SharePoint Zero-Day Vulnerability Chain
Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code ...
Microsoft5d
Disrupting active exploitation of on-premises SharePoint vulnerabilities
Microsoft has observed two named Chinese nation-state actors, Linen Typhoon and Violet Typhoon, exploiting vulnerabilities ...
Redmondmag.com5d
SharePoint Zero Day Vulnerability Exploited in Government System Breaches
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an alert Sunday detailing active exploitation of a ...
Federal News Network4d
Agencies face tight deadline to mitigate SharePoint vulnerability
CISA gave agencies until the end of the day on Monday to mitigate a severe zero-day vulnerability in Microsoft's widely used ...
Homeland Security Today4d
Microsoft Releases Updated Guidance on Exploitation of SharePoint Vulnerabilities
This Alert was updated to reflect newly released information from Microsoft, and to correct the actively exploited Common ...
Hackers exploiting SharePoint zero-day seen targeting government agencies
The hackers behind the initial wave of attacks exploiting a zero-day in Microsoft SharePoint servers have so far primarily ...
Nextgov5d
Threat intel firms on alert for government systems impacted by Microsoft SharePoint vulnerability
Governments, schools, healthcare providers and large enterprise firms are at risk, one cyber threat intelligence chief said.