News

What to know about ToolShell, the SharePoint threat under mass exploitation
The name was coined by Dinh Ho Anh, a researcher from Khoa of Viettel Cyber Security, who developed the exploit. The ...
SecurityWeek2d
ToolShell Zero-Day Attacks on SharePoint: First Wave Linked to China, Hit High-Value Targets
More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the ...
WeLiveSecurity13h
ToolShell: An all-you-can-eat buffet for threat actors
ESET Research has been monitoring intense attacks involving the recently discovered ToolShell zero-day vulnerabilities.
CSO Online11h
Microsoft’s incomplete SharePoint patch led to global exploits by China-linked hackers
A July 8 fix for a critical SharePoint zero-day failed to stop active exploitation, enabling state-backed attackers to breach ...
Infosecurity Magazine2d
SharePoint 'ToolShell' Vulnerabilities Exploited by Chinese Nation-State Hackers
Microsoft has observed three China-based threat actors, Linen Typhoon, Violet Typhoon and Storm-2603, exploiting the ...
SecurityWeek2d
Microsoft Says Chinese APTs Exploited ToolShell Zero-Days Weeks Before Patch
Microsoft says the Chinese threat actors Linen Typhoon, Violet Typhoon, and Storm-2603 have been exploiting the ToolShell zero-days.
TweakTown3d
Hackers use Microsoft service to launch serious global attack at governments and businesses
At least 85 servers worldwide have been compromised through a Microsoft service vulnerability that has been used to achieve ...
The Hacker News4d
Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Global Organizations
The zero-day flaw, tracked as CVE-2025-53770 (CVSS score: 9.8), has been described as a variant of CVE-2025-49706 (CVSS score: 6.3), a spoofing bug in Microsoft SharePoint Server that was addressed by ...