Microsoft Says Chinese APTs Exploited ToolShell Zero-Days Weeks Before Patch

Threat Level

78% SecurityWeek 12 hours ago Part of cluster #1289

Microsoft says the Chinese threat actors Linen Typhoon, Violet Typhoon, and Storm-2603 have been exploiting the ToolShell zero-days....

Continue Reading on Original Site

Recommended Articles

Defending Against ToolShell: SharePoint’s Latest Critical Vulnerability

SentinelOne 6 hours ago

Read up on how to defend against ToolShell, the latest SharePoint critical vulnerability affecting on-premises SharePoint servers....

CISA Orders Urgent Patching After Chinese Hackers Exploit SharePoint Flaws in Live Attacks

The Hacker News 1 hour ago

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), on July 22, 2025,addedtwo Microsoft SharePoint flaws, CVE-2025-49704 and CVE-2025-49706, to its Known Exploited Vulnerabilities (KEV) ...

UK proposal would forbid ransom payments by gov’t agencies, but will it meaningfully decrease ransomware attacks?

CSO Online 5 hours ago

The UK government on Tuesday proposed an order that would forbid all government agencies and other government entities from making any ransom payments, regardless of circumstances. But security expert...

Chinese Hackers Actively Exploiting SharePoint Servers 0-Day Flaw in the Wild

Cybersecurity News 43 minutes ago

Microsoft has confirmed that Chinese state- threat actors are actively exploiting critical zero-day vulnerabilities in on-premises SharePoint servers, prompting urgent security warnings for organizati...

CISA Alerts on Active Exploitation of Microsoft SharePoint Code Injection and Authentication Vulnerabilities

GB Hackers 1 hour ago

CISA Alerts on Active Exploitation of Microsoft SharePoint Code Injection and Authentication Vulnerabilities The Cybersecurity and Infrastructure Security Agency (CISA) has issued urgent alerts regard...

Threat Intelligence

APT Groups 2

APT27 APT31

Ransomware 1

Storm

Business Intelligence

Companies 1

Microsoft

Information

Article ID: #4317
Published: 12 hours ago
Source: SecurityWeek

Recommended Articles

Defending Against ToolShell: SharePoint’s Latest Critical Vulnerability

CISA Orders Urgent Patching After Chinese Hackers Exploit SharePoint Flaws in Live Attacks

UK proposal would forbid ransom payments by gov’t agencies, but will it meaningfully decrease ransomware attacks?

Chinese Hackers Actively Exploiting SharePoint Servers 0-Day Flaw in the Wild

CISA Alerts on Active Exploitation of Microsoft SharePoint Code Injection and Authentication Vulnerabilities

Save to Folder

We use cookies

Cookie Settings

Essential Cookies

Analytics Cookies

Performance Cookies

Marketing Cookies