toolshell sharepoint - Search News

Order byBest matchMost fresh

Microsoft fixes 2 SharePoint zero-days under attack

Digest more

· 20h

Patch SharePoint Now: Microsoft Servers at Risk of New ToolShell RCE Attack

A critical remote code execution (RCE) vulnerability in Microsoft SharePoint is being actively exploited in the wild.

· 18h

Microsoft links Sharepoint ToolShell attacks to Chinese hackers

· 43m

Attacks on Microsoft Sharepoint: What admins need to do after patching

· 15h

Microsoft knew of SharePoint server exploit but failed to effectively patch it

A security patch released by Microsoft (MSFT.O) last month failed to fully fix a critical flaw in U.S. tech giant's SharePoint server software that had been identified in May, opening the door to a s...

· 1d

SharePoint vulnerability with 9.8 severity rating under exploit across globe

· 1d

Microsoft Confirms Global SharePoint Attack — Emergency Update Issued

SecurityWeek1h

Microsoft Says Chinese APTs Exploited ToolShell Zero-Days Weeks Before Patch

Microsoft says the Chinese threat actors Linen Typhoon, Violet Typhoon, and Storm-2603 have been exploiting the ToolShell zero-days.

Infosecurity Magazine15h

SharePoint 'ToolShell' Vulnerabilities Exploited by Chinese Nation-State Hackers

Microsoft has observed three China-based threat actors, Linen Typhoon, Violet Typhoon and Storm-2603, exploiting the SharePoint vulnerabilities

CRN12h

This Is ‘Just The Beginning’ Of Threats From Microsoft SharePoint Flaw: Researchers

While all patches against ‘ToolShell’ exploits are now available for on-premises SharePoint Servers, attackers will be looking to utilize the vulnerabilities for months to come, security researchers tell CRN.

SecurityWeek21h

ToolShell Zero-Day Attacks on SharePoint: First Wave Linked to China, Hit High-Value Targets

More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the vulnerabilities.

1don MSN

"We’re witnessing an urgent and active threat" — Microsoft SharePoint "ToolShell" vulnerability is being attacked globally

The term "zero-day" attack refers to when a previously unknown vulnerability is targeted. Tens of thousands of servers are said to be at risk. While the issue is serious, it differs from several previous vulnerabilities related to Microsoft. The attack only affects on-premises servers; cloud-based servers are unaffected.

TweakTown2d

Hackers use Microsoft service to launch serious global attack at governments and businesses

At least 85 servers worldwide have been compromised through a Microsoft service vulnerability that has been used to achieve remote code execution.

The Hacker News2d

Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Global Organizations

The zero-day flaw, tracked as CVE-2025-53770 (CVSS score: 9.8), has been described as a variant of CVE-2025-49706 (CVSS score: 6.3), a spoofing bug in Microsoft SharePoint Server that was addressed by the tech giant as part of its July 2025 Patch Tuesday updates.