Organisations running on-premise instances of Microsoft’s SharePoint collaboration and document management platform should update without delay after multiple reports of an as-yet unidentified party exploiting two newly-uncovered vulnerabilities emerged.
GPT.display('halfpage')
GPT.display('mu-1')
Dubbed ToolShell, the related vulnerabilities, CVE-2025-53770 and CVE-2025-53771 allow for remote code execution (RCE) and server spoofing in SharePoint. They appear to have arisen as variants of an un...
Nearly half of MSPs admit to having a ransomware kitty
IT Pro Security
54 minutes ago
The firm’s annual MSP report highlights the mounting pressure on MSPs as attackers increasingly leverage the latest AI advancements...