SharePoint Vulnerability Exploitation - Search News

News

SharePoint, active exploitation

Microsoft · 22h

Disrupting active exploitation of on-premises SharePoint vulnerabilities

Microsoft has observed two named Chinese nation-state actors, Linen Typhoon and Violet Typhoon, exploiting vulnerabilities targeting internet-facing SharePoint servers. In addition, we have observed another China-based threat actor,

Ars Technica · 3d

SharePoint vulnerability with 9.8 severity rating under exploit across globe

The vulnerability, tracked as CVE-2025-53770, carries a severity rating of 9.8 out of a possible 10. It gives unauthenticated remote access to SharePoint Servers exposed to the Internet. Starting Friday,

USA TODAY on MSN · 3d

Microsoft SharePoint attack: Officials issue warning about 'active exploitation'

Federal cybersecurity officials have issued a warning to Microsoft users about a security flaw allowing hackers to access to certain SharePoint systems.

Microsoft, SharePoint

PCMag on MSN · 3d

Mass Exploitation: Hackers Hit Zero-Day Flaw in Microsoft's SharePoint

The newly discovered flaw in Microsoft's SharePoint software has allowed hackers to target dozens of companies and organizations. Only a partial fix has been issued.

Microsoft Put Older Versions of SharePoint on Life Support. Hackers Are Taking Advantage

Multiple hacking groups—including state actors from China—have targeted a vulnerability in older, on-premises versions of the file-sharing tool after a flawed attempt to patch it.

The Washington Post on MSN · 1d

U.S. nuclear and health agencies hit in Microsoft SharePoint breach

Victims of the recent global hacking campaign include the National Institutes of Health and the National Nuclear Security Administration, officials said.

1d

What to know about ToolShell, the SharePoint threat under mass exploitation

The name was coined by Dinh Ho Anh, a researcher from Khoa of Viettel Cyber Security, who developed the exploit. The ...

The Hacker News12h

Storm-2603 Exploits SharePoint Flaws to Deploy Warlock Ransomware on Unpatched Systems

Storm-2603 exploits SharePoint flaws to deploy Warlock ransomware, affecting 400+ victims. Microsoft urges mitigation.

Microsoft’s incomplete SharePoint patch led to global exploits by China-linked hackers

A July 8 fix for a critical SharePoint zero-day failed to stop active exploitation, enabling state-backed attackers to breach ...

Government Technology2d

As SharePoint Exploit Emerged, State Cyber Teams Mobilized

State CISOs in North Carolina and Arizona said their teams began work immediately to ensure on-prem SharePoint systems were ...

The Hacker News2d

Hackers Exploit SharePoint Zero-Day Since July 7 to Steal Keys, Maintain Persistent Access

Active SharePoint exploits since July 7 target governments and tech firms globally, risking key theft and persistent access.

3don MSN

Microsoft releases urgent SharePoint security flaw patches - here's what you need to know, and how to update

To secure the endpoints, Microsoft recommends applying the July 2025 security updates immediately, as well as enabling ...

3don MSN

Hackers Exploit Microsoft Software Vulnerability To Reportedly Target Governments And Businesses—What To Know

Microsoft released an emergency security patch on Sunday to “mitigate active attacks targeting on-premises servers.” ...

Some results have been hidden because they may be inaccessible to you

Show inaccessible results