SharePoint Vulnerability Exploitation

Order byBest matchMost fresh

SharePoint, Microsoft and active exploitation

Microsoft Releases Emergency Updates Amid Active Exploitation of SharePoint Zero-Day Vulnerability Chain

Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code execution on SharePoint, resulting in the exploitation of at least 54 organizations worldwide.

Microsoft · 4d

Disrupting active exploitation of on-premises SharePoint vulnerabilities

· 4d · on MSN

Microsoft SharePoint attack: Officials issue warning about 'active exploitation'

· 2d

U.S. nuclear and health agencies hit in Microsoft SharePoint breach

The National Institutes of Health and the federal agency responsible for securing the nation’s nuclear weapons were among the victims in a global breach of Microsoft server software over the weekend,...

· 1d

Tally of Microsoft victims surges to 400 as hackers exploit SharePoint flaw

· 1d

Chinese Hackers Are Exploiting Flaws in Widely Used Software, Microsoft Says

· 1d

Microsoft says some SharePoint server hackers now use ransomware

The disclosure marks a potential escalation in the campaign, which has already hit at least 400 victims, according to Netherlands-based cybersecurity firm Eye Security.

· 1d

Nuclear Weapons Agency Breached in Microsoft SharePoint Hack

· 1d

The SharePoint flaw has now hit over 400 companies including a US nuclear administration

Microsoft, SharePoint and Damage Spreads

Digest more

· 1h

Microsoft SharePoint Hackers Switch Gears to Spread Ransomware

Recent attacks targeting Microsoft SharePoint have escalated, with threat actors now deploying ransomware on vulnerable systems, according to Microsoft.

· 1d · on MSN

DHS, HHS among agencies hacked in Microsoft Sharepoint breach

· 1d · on MSN

Microsoft Hack Hits Hundreds of Firms, Agencies as Damage Spreads

· 1d

Microsoft seemingly confirms Chinese hackers behind SharePoint server attacks

Some researchers are saying that these groups were tasked with persisting in the target networks, in case the standoff between the US and China over Taiwan escalates into actual war.

CSOonline · 1d

Microsoft’s incomplete SharePoint patch led to global exploits by China-linked hackers

· 1d

Microsoft servers hacked by Chinese groups, says tech giant

What to know about ToolShell, the SharePoint threat under mass exploitation

The name was coined by Dinh Ho Anh, a researcher from Khoa of Viettel Cyber Security, who developed the exploit. The researcher said he picked the name because it exploited ToolPane.aspx, a component for assembling the side panel view in the SharePoint user interface.

2hon MSN

Microsoft probing if Chinese hackers learned SharePoint flaws through alert, Bloomberg News reports

Microsoft is investigating whether a leak from its early alert system for cybersecurity companies allowed Chinese hackers to exploit flaws in its SharePoint service before they were patched, Bloomberg News reported on Friday.

Government Technology2d

As SharePoint Exploit Emerged, State Cyber Teams Mobilized

State CISOs in North Carolina and Arizona said their teams began work immediately to ensure on-prem SharePoint systems were secure, following the recent disclosure of an active zero-day exploit.

SharePoint vulnerability with 9.8 severity rating under exploit across globe

The vulnerability, tracked as CVE-2025-53770, carries a severity rating of 9.8 out of a possible 10. It gives unauthenticated remote access to SharePoint Servers exposed to the Internet. Starting Friday,

Federal News Network3d

Agencies face tight deadline to mitigate SharePoint vulnerability

CISA gave agencies until the end of the day on Monday to mitigate a severe zero-day vulnerability in Microsoft's widely used SharePoint software.

The Hacker News3d

Hackers Exploit SharePoint Zero-Day Since July 7 to Steal Keys, Maintain Persistent Access

Active SharePoint exploits since July 7 target governments and tech firms globally, risking key theft and persistent access.