News

WinBuzzer2d

Massive Microsoft SharePoint Zero-Day Hacking Campaign Appears to be Fueled by Leaked Patch Details

A top security researcher claims the massive SharePoint zero-day attack was fueled by a leak from a Microsoft partner program, giving hackers a critical head start.

Microsoft probing if Chinese hackers learned SharePoint flaws through alert, Bloomberg News reports

Microsoft is investigating whether a leak from its early alert system for cybersecurity companies allowed Chinese hackers to ...

Attacks on Microsoft Sharepoint: What admins need to do after patching

Closing the gaps is not enough against the current toolshell attacks. After all, attackers could already be inside. We show ...

SharePoint vulnerability with 9.8 severity rating under exploit across globe

The vulnerability, tracked as CVE-2025-53770, carries a severity rating of 9.8 out of a possible 10. It gives unauthenticated ...

Microsoft releases emergency patches for SharePoint RCE flaws exploited in attacks

Microsoft has released emergency SharePoint security updates for two zero-day vulnerabilities tracked as CVE-2025-53770 and CVE-2025-53771 that have compromised services worldwide in "ToolShell" ...

Microsoft SharePoint zero-day exploited in RCE attacks, no patch available

Critical zero-day vulnerabilities in Microsoft SharePoint, tracked as CVE-2025-53770 and CVE-2025-53771, have been actively ...