toolshell sharepoint - Search News

Order byBest matchMost fresh

Microsoft fixes 2 SharePoint zero-days under attack

Digest more

· 13h

Patch SharePoint Now: Microsoft Servers at Risk of New ToolShell RCE Attack

A critical remote code execution (RCE) vulnerability in Microsoft SharePoint is being actively exploited in the wild.

· 11h

Microsoft Sharepoint ToolShell attacks linked to Chinese hackers

· 1h · on MSN

Microsoft knew of SharePoint security flaw but failed to effectively patch it, timeline shows

· 8h

Microsoft knew of SharePoint server exploit but failed to effectively patch it

A security patch released by Microsoft (MSFT.O) last month failed to fully fix a critical flaw in U.S. tech giant's SharePoint server software that had been identified in May, opening the door to a s...

· 1d

SharePoint vulnerability with 9.8 severity rating under exploit across globe

· 1d

Microsoft Confirms Global SharePoint Attack — Emergency Update Issued

SecurityWeek14h

ToolShell Zero-Day Attacks on SharePoint: First Wave Linked to China, Hit High-Value Targets

More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the vulnerabilities.

Infosecurity Magazine8h

SharePoint 'ToolShell' Vulnerabilities Exploited by Chinese Nation-State Hackers

Microsoft has observed three China-based threat actors, Linen Typhoon, Violet Typhoon and Storm-2603, exploiting the SharePoint vulnerabilities

1don MSN

"We’re witnessing an urgent and active threat" — Microsoft SharePoint "ToolShell" vulnerability is being attacked globally

The term "zero-day" attack refers to when a previously unknown vulnerability is targeted. Tens of thousands of servers are said to be at risk. While the issue is serious, it differs from several previous vulnerabilities related to Microsoft. The attack only affects on-premises servers; cloud-based servers are unaffected.

15h

Update: New version of Sharepoint 2016 fixes toolshell vulnerability

Microsoft is following up and is also releasing a patch for the 2016 edition of Sharepoint. Admins should install this immediately.

TweakTown1d

Hackers use Microsoft service to launch serious global attack at governments and businesses

At least 85 servers worldwide have been compromised through a Microsoft service vulnerability that has been used to achieve remote code execution.

The Hacker News2d

Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Global Organizations

The zero-day flaw, tracked as CVE-2025-53770 (CVSS score: 9.8), has been described as a variant of CVE-2025-49706 (CVSS score: 6.3), a spoofing bug in Microsoft SharePoint Server that was addressed by the tech giant as part of its July 2025 Patch Tuesday updates.