News

"We’re witnessing an urgent and active threat" — Microsoft SharePoint "ToolShell" vulnerability is being attacked globally

The term "zero-day" attack refers to when a previously unknown vulnerability is targeted. Tens of thousands of servers are ...

Update: New version of Sharepoint 2016 fixes toolshell vulnerability

Microsoft is following up and is also releasing a patch for the 2016 edition of Sharepoint. Admins should install this ...

Patch SharePoint Now: Microsoft Servers at Risk of New ToolShell RCE Attack

If exploited, attackers can gain full access to SharePoint content and potentially pivot to Outlook, Teams, and OneDrive.
The Hacker News18h

Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Company Servers

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), in an alert, said it's aware of active exploitation of CVE-2025-53770, which enables unauthenticated access to SharePoint systems and ...
The Hacker News14h

Microsoft Releases Urgent Patch for SharePoint RCE Flaw Exploited in Ongoing Cyber Attacks

The cybersecurity vendor has also classified it as a high-severity, high-urgency threat, urging organizations running ...

Microsoft SharePoint hack: CERT-In flags ongoing threat, follow these steps to secure your systems

Researchers first uncovered a sweeping cyber espionage operation targeting Microsoft server software affecting at least 100 ...