US nuclear weapons agency hacked in Microsoft SharePoint attacks

Threat Level

55% BleepingComputer 1 day ago Part of cluster #1324

US nuclear weapons agency hacked in Microsoft SharePoint attacks Sergiu Gatlan July 23, 2025 11:14 AM 1 Unknown threat actors have breached the National Nuclear Security Administration's network in attacks exploiting a recently patched Microsoft SharePoint zero-day vulnerability chain. NNSA is a semi-autonomous U.S. government agency part of the Energy Department that maintains the country's nuclear weapons stockpile and is also tasked with responding to nuclear and radiological emergencies with...

Continue Reading on Original Site

Recommended Articles

Feds Fine Surgery Practice $250K in Ransomware Breach

Data Breach Today UK 3 hours ago

2021 Pysa Hack Compromised PHI of Nearly 25,000 Patients A HIPAA breach investigation into a 2021 attack involving a variant of Pysa ransomware resulted in a $250,000 fine for an upstate New York spec...

Proof-of-Concept Code Now Available for an Exploited Windows Local Privilege Escalation Vulnerability

FortiGuard Threat Signal 55 minutes ago

Threat Signal Report Proof-of-Concept Code Now Available for an Exploited Windows Local Privilege Escalation Vulnerability Description FortiGuard Labs is aware that a Proof-of-Concept (POC) code for a...

Joint CyberSecurity Advisory Alert on PrintNightmare Vulnerability and Default MFA Protocols Exploited by Russian State-Sponsored Cyber Actors (AA22-074A)

FortiGuard Threat Signal 56 minutes ago

Threat Signal Report Joint CyberSecurity Advisory Alert on PrintNightmare Vulnerability and Default MFA Protocols Exploited by Russian State- Cyber Actors (AA22-074A) Description FortiGuard Labs is aw...

Ransomware Actors Pile on 'ToolShell' SharePoint Bugs

Dark Reading 4 hours ago

Storm-2603, a China-based threat actor, is targeting SharePoint customers in an ongoing ransomware campaign....

Law Enforcement Cracks Down on XSS — but Will It Last?

Dark Reading 4 hours ago

The arrest of a suspected administrator for the popular cybercrime forum was one of several enforcement actions in the past week targeting malicious activity....

Threat Intelligence

APT Groups 3

Ransomware 5

First Hacked Storm Unknown Zlader

Attack Types 1

Remote Code Execution

Vulnerabilities 3

RCE Remote Code Execution Zero-Day

Business Intelligence

Companies 3

Google Microsoft SolarWinds

Industries 3

Energy Nuclear Telecommunications

Security Vendors 1

Check Point

Agencies 3

CISA Foreign Intelligence Service SVR

Countries 2

China United States

Platforms 1

SharePoint

Technical Indicators

CVEs 1

CVE-2025-53770

Information

Article ID: #4462
Published: 1 day ago
Source: BleepingComputer

Recommended Articles

Feds Fine Surgery Practice $250K in Ransomware Breach

Proof-of-Concept Code Now Available for an Exploited Windows Local Privilege Escalation Vulnerability

Joint CyberSecurity Advisory Alert on PrintNightmare Vulnerability and Default MFA Protocols Exploited by Russian State-Sponsored Cyber Actors (AA22-074A)

Ransomware Actors Pile on 'ToolShell' SharePoint Bugs

Law Enforcement Cracks Down on XSS — but Will It Last?

Save to Folder

We use cookies

Cookie Settings

Essential Cookies

Analytics Cookies

Performance Cookies

Marketing Cookies