Microsoft Releases Mitigations and Threat Hunting Queries for SharePoint Zero-Day

Threat Level

72% Cybersecurity News 8 hours ago Part of cluster #1271

Thousands of organizations worldwide face active cyberattacks targeting Microsoft SharePoint servers through two critical vulnerabilities, prompting urgent government warnings and emergency patches. Microsoft confirmed over the weekend that threat actors are actively exploiting two zero-day vulnerabilities in on-premises SharePoint servers, designated CVE-2025-53770 and CVE-2025-53771. The attacks, dubbed “ToolShell” by security researchers, have compromised dozens of […]...

Continue Reading on Original Site

Recommended Articles

Critical Sophos Firewall Vulnerabilities Enables pre-auth Remote Code Execution

Cybersecurity News 1 hour ago

Multiple security vulnerabilities affecting Sophos firewall products, with two enabling pre-authentication remote code execution that could allow attackers to compromise systems without valid credenti...

ToolShell Zero-Day Attacks on SharePoint: First Wave Linked to China, Hit High-Value Targets

SecurityWeek 5 hours ago

More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the vulnerabilities....

UK to ban public sector orgs from paying ransomware gangs

BleepingComputer 1 hour ago

UK to ban public sector orgs from paying ransomware gangs Sergiu Gatlan July 22, 2025 09:01 AM 1 The United Kingdom's government is planning to ban public sector and critical infrastructure organizati...

Critical Infrastructure Security Is a Critical Concern

Dark Reading 51 minutes ago

Vulnerabilities & Threats Cyberattacks & Data Breaches Commentary Critical Infrastructure Security Is a Critical ConcernCritical Infrastructure Security Is a Critical ConcernCritical Infrastructure Se...

Why Hedge Funds Need to Take Data Exfiltration as Seriously as Ransomware

Morphisec News 1 hour ago

In the high-stakes world of hedge funds and financial services, data security is more than just a technical concern—it’s a business imperative. With billions of dollars in assets under management (A...

Threat Intelligence

Vulnerabilities 1

Zero-Day

Business Intelligence

Companies 1

Microsoft

Platforms 1

SharePoint

Technical Indicators

CVEs 2

CVE-2025-53770 CVE-2025-53771

Information

Article ID: #4207
Published: 8 hours ago
Source: Cybersecurity News

Recommended Articles

Critical Sophos Firewall Vulnerabilities Enables pre-auth Remote Code Execution

ToolShell Zero-Day Attacks on SharePoint: First Wave Linked to China, Hit High-Value Targets

UK to ban public sector orgs from paying ransomware gangs

Critical Infrastructure Security Is a Critical Concern

Why Hedge Funds Need to Take Data Exfiltration as Seriously as Ransomware

Save to Folder

We use cookies

Cookie Settings

Essential Cookies

Analytics Cookies

Performance Cookies

Marketing Cookies