toolshell sharepoint - Search News

Order byBest matchMost fresh

Microsoft fixes 2 SharePoint zero-days under attack

Digest more

· 7h

Patch SharePoint Now: Microsoft Servers at Risk of New ToolShell RCE Attack

A critical remote code execution (RCE) vulnerability in Microsoft SharePoint is being actively exploited in the wild.

· 5h

Microsoft Sharepoint ToolShell attacks linked to Chinese hackers

· 54m · on MSN

Microsoft knew of SharePoint security flaw but failed to effectively patch it, timeline shows

· 1d

If Your Business Uses These Versions of Microsoft SharePoint, Patch Them Now

The zero-day attack is serious, but fixes are available now for some versions of the software.

· 20h

SharePoint vulnerability with 9.8 severity rating under exploit across globe

· 20h

Microsoft Confirms Global SharePoint Attack — Emergency Update Issued

SecurityWeek8h

ToolShell Zero-Day Attacks on SharePoint: First Wave Linked to China, Hit High-Value Targets

More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the vulnerabilities.

GovInfoSecurity23m

Microsoft Traces On-Premises SharePoint Exploits to China

Microsoft said an attack campaign targeting zero-day vulnerabilities in on-premises SharePoint servers appears to have begun by July 7, tied to three Chinese hack

Infosecurity Magazine2h

SharePoint 'ToolShell' Vulnerabilities Exploited by Chinese Nation-State Hackers

Microsoft has observed three China-based threat actors, Linen Typhoon, Violet Typhoon and Storm-2603, exploiting the SharePoint vulnerabilities

Update: New version of Sharepoint 2016 fixes toolshell vulnerability

Microsoft is following up and is also releasing a patch for the 2016 edition of Sharepoint. Admins should install this immediately.

TweakTown1d

Hackers use Microsoft service to launch serious global attack at governments and businesses

At least 85 servers worldwide have been compromised through a Microsoft service vulnerability that has been used to achieve remote code execution.

The Hacker News2d

Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Global Organizations

The zero-day flaw, tracked as CVE-2025-53770 (CVSS score: 9.8), has been described as a variant of CVE-2025-49706 (CVSS score: 6.3), a spoofing bug in Microsoft SharePoint Server that was addressed by the tech giant as part of its July 2025 Patch Tuesday updates.