News

SecurityWeek7h
Microsoft Says Chinese APTs Exploited ToolShell Zero-Days Weeks Before Patch
Microsoft says the Chinese threat actors Linen Typhoon, Violet Typhoon, and Storm-2603 have been exploiting the ToolShell ...
Infosecurity Magazine21h
SharePoint 'ToolShell' Vulnerabilities Exploited by Chinese Nation-State Hackers
Microsoft has observed three China-based threat actors, Linen Typhoon, Violet Typhoon and Storm-2603, exploiting the ...
The Hacker News6h
CISA Orders Urgent Patching After Chinese Hackers Exploit SharePoint Flaws in Live Attacks
CISA flags Microsoft SharePoint flaws under active attack by Chinese hackers. U.S. agencies must patch by July 23 ...
Deccan Chronicle2h
Microsoft Knew Of SharePoint Security Flaw But Failed To Effectively Patch It: Report
Microsoft spokesperson confirmed that its initial solution to the flaw, identified at a hacker competition in May, did not ...
Three Chinese groups identified as attackers on Sharepoint servers
An analysis by Microsoft names three different groups from China as the attackers of the latest Sharepoint vulnerability. But ...
Attacks on Microsoft Sharepoint: What admins need to do after patching
Closing the gaps is not enough against the current toolshell attacks. After all, attackers could already be inside. We show ...
Microsoft knew of SharePoint server exploit but failed to effectively patch it
A recent security breach related to Microsoft SharePoint exposes critical vulnerabilities despite a July patch, linking ...
US Nuclear Agency hit in Microsoft SharePoint hack, company points finger at Chinese hackers
A widespread cyberattack, attributed to Chinese state-sponsored hackers, compromised over 100 organizations globally, ...
SecurityWeek19h
SharePoint Under Attack: Microsoft Warns of Zero-Day Exploited in the Wild – No Patch Available
Microsoft warned SharePoint Server users of a vulnerability dubbed ToolShell in the software that was assigned CVE-2025-53770 ...
Microsoft knew of SharePoint security flaw but failed to effectively patch it, timeline shows
A security patch released by Microsoft last month failed to fully fix a critical flaw in U.S. tech giant's SharePoint server ...
Microsoft’s Security Patch Misfire Exposes Its Server Flaw to Global Cyber Espionage Campaign Linked to China
A botched security patch by Microsoft has left its widely-used SharePoint Server exposed to a critical vulnerability—fueling ...
DataBreachToday19h
Microsoft Traces On-Premises SharePoint Exploits to China
Microsoft said an attack campaign targeting zero-day vulnerabilities in on-premises SharePoint servers appears to have begun ...