SharePoint Zero-Day Exploitation

Order byBest matchMost fresh

Microsoft’s SharePoint Patch Failed To Stop Attacks

Mass Exploitation: Hackers Hit Zero-Day Flaw in Microsoft's SharePoint

The newly discovered flaw in Microsoft's SharePoint software has allowed hackers to target dozens of companies and organizations. Only a partial fix has been issued.

CSO Online · 1d

Microsoft’s incomplete SharePoint patch led to global exploits by China-linked hackers

· 5d

Microsoft SharePoint zero-day exploited in RCE attacks, no patch available

· 1d

Tally of Microsoft victims surges to 400 as hackers exploit SharePoint flaw

The number of companies and organizations compromised by a security vulnerability in Microsoft Corp.’s SharePoint servers is increasing rapidly, with the tally of victims soaring more than sixfold in ...

· 1d

Microsoft says China-based hackers exploiting critical SharePoint vulnerabilities to deploy Warlock ransomware — three China-affiliated threat actors seen taking advantage

· 1d

Microsoft fixes SharePoint zero-day exploits used in cyberattacks and ransomware - how to patch them

· 15h

Microsoft probing if Chinese hackers learned SharePoint flaws through alert, Bloomberg News reports

A security patch Microsoft released this month failed to fully fix a critical flaw in the U.S. tech giant's SharePoint server software, opening the door to a sweeping global cyber espionage effort.

· 1d

The SharePoint flaw has now hit over 400 companies including a US nuclear administration

· 16h

Hackers attack Microsoft SharePoint, targeting organizations like U.S nuclear security

CPO Magazine20h

Microsoft Releases Emergency Updates Amid Active Exploitation of SharePoint Zero-Day Vulnerability Chain

Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code execution on SharePoint, resulting in the exploitation of at least 54 organizations worldwide.

What to know about ToolShell, the SharePoint threat under mass exploitation

The name was coined by Dinh Ho Anh, a researcher from Khoa of Viettel Cyber Security, who developed the exploit. The researcher said he picked the name because it exploited ToolPane.aspx, a component for assembling the side panel view in the SharePoint user interface.

SecurityWeek2d

ToolShell Attacks Hit 400+ SharePoint Servers, US Government Victims Named

More information has emerged on the ToolShell SharePoint zero-day attacks, including impact, victims, and threat actors.

The Hacker News5d

Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Company Servers

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), in an alert, said it's aware of active exploitation of CVE-2025-53770, which enables unauthenticated access to SharePoint systems and arbitrary code execution over the network.