Topic: cve-2025-53770 cve-2025-53771
-
Microsoft Warns of Active Attacks on On-Prem SharePoint Servers
Microsoft warns of active cyberattacks targeting on-premises SharePoint servers, risking sensitive data in critical industries like government and healthcare. Attackers bypass MFA and SSO protections, exploiting vulnerabilities (CVE-2025-53770 and CVE-2025-53771) to steal data and compromise link...
Read More » -
Microsoft SharePoint Zero-Day Exploited in RCE Attacks - No Fix Yet
Microsoft SharePoint is under active attack via zero-day vulnerabilities (CVE-2025-53770 and CVE-2025-53771), enabling remote code execution on on-premises servers, with at least 85 servers compromised globally. Microsoft recommends mitigations like enabling AMSI, deploying Defender AV, and rotat...
Read More » -
Microsoft Ties Sharepoint Attacks to Chinese Hackers
Microsoft identified Chinese state-linked hacking groups exploiting critical SharePoint vulnerabilities to infiltrate global organizations, involving groups like Linen Typhoon, Violet Typhoon, and Storm-2603. The operation, codenamed "ToolShell," weaponized zero-day flaws to breach SharePoint ser...
Read More » -
Microsoft SharePoint zero-day exploits target on-prem servers
Hackers are actively exploiting new vulnerabilities (CVE-2025-53770 and CVE-2025-53771) in Microsoft SharePoint Server, leading to unauthorized access and data exposure in on-premises deployments. Microsoft's security patches offer partial protection, but organizations must also activate AMSI int...
Read More »
