Published 2 days ago • loading... • Updated 1 day ago

U.S. CISA urges FCEB agencies to fix two Microsoft SharePoint flaws immediately and added them to its Known Exploited Vulnerabilities catalog

Summary by IT Security News - Cybersecurity, Infosecurity News

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds two Microsoft SharePoint flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added two Microsoft SharePoint flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the… Read more → The post U.S. CISA urges FCEB agencies to fix two Microsoft SharePoint flaws immediately and added them to its Known Expl…

15 Articles

svt Nyheter

Lean Left

Hackers Discovered Vulnerability in Microsoft Sharepoint: “Serious Threat”

Gaps in Microsoft Sharepoint may have been exploited • The program is common among authorities and companies

2 days ago·Stockholm, Sweden

Read Full Article

securelist.com

Reposted by

Malware Analysis, News and Indicators

ToolShell: a story of five vulnerabilities in Microsoft SharePoint

On July 19–20, 2025, various security companies and national CERTs published alerts about active exploitation of on-premise SharePoint servers. According to the reports, observed attacks did not require authentication, allowed attackers to gain full control over the infected servers, and were performed using an exploit chain of two vulnerabilities: CVE-2025-49704 and CVE-2025-49706, publicly named “ToolShell”. Additionally, on the same dates, Mi…

1 day ago

Read Full Article

SecurityBrief Asia

Reposted by

SecurityBrief New Zealand

Microsoft SharePoint zero-day flaw prompts urgent global response

A critical zero-day flaw in Microsoft SharePoint is being actively exploited globally, prompting urgent patches to prevent unauthorised server access and data breaches.

1 day ago

Read Full Article

El Comercio

Microsoft Accuses Chinese State Hackers of Attacking Their Customers · Global Voices

Why do we keep falling into phishing?The oldest internet trap still dominates Peru and companies are not savedPhotos of nudes generated by artificial intelligence feed deadly wave of digital blackmail Chinese state-sponsored hackers are exploiting critical security vulnerabilities in users of Microsoft's popular SharePoint servers to steal sensitive data, the tech giant warned on Tuesday.

1 day ago·Lima, Peru

Read Full Article

WWWhat's new

Microsoft Launches Sharepoint Emergency Patches After Detection of Active Security Failures

Microsoft has issued urgent security updates for SharePoint, its corporate collaboration platform, after confirming that two critical vulnerabilities were being actively exploited by attackers. The flaws, identified as CVE-2025-53770 and CVE-2025-53771, affect local versions of SharePoint and allow remote code execution (RCE) attacks, which opens the door to unauthorized access within business environments. What is happening with SharePoint? In …

1 day ago

Read Full Article

cybernoz.com

Metasploit Module Released For Actively Exploited SharePoint 0-Day Vulnerabilities - Cybernoz - Cybersecurity News

Researchers have developed a new Metasploit exploit module targeting critical zero-day vulnerabilities in Microsoft SharePoint Server that are being actively exploited in the wild. The module, designated as pull request #20409 in the Metasploit Framework repository, addresses CVE-2025-53770 and CVE-2025-53771, which enable unauthenticated remote code execution (RCE) attacks against vulnerable SharePoint installations. Key Takeaways1. SharePoint…

2 days ago

Read Full Article

Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/year