SharePoint Zero-Day Exploitation

Order byBest matchMost fresh

SharePoint, Microsoft

Mass Exploitation: Hackers Hit Zero-Day Flaw in Microsoft's SharePoint

The newly discovered flaw in Microsoft's SharePoint software has allowed hackers to target dozens of companies and organizations. Only a partial fix has been issued.

CSO Online · 16h

Microsoft’s incomplete SharePoint patch led to global exploits by China-linked hackers

The Hacker News · 2d

Hackers Exploit SharePoint Zero-Day Since July 7 to Steal Keys, Maintain Persistent Access

· 1d

Microsoft fixes three SharePoint zero-day exploits used in series of cyberattacks - how to patch them

Microsoft has patched two critical zero-day SharePoint security flaws that have already been exploited by hackers to attack vulnerable organizations.

· 1d

US Nuclear Body Among Those Impacted By SharePoint Breech

· 13h

Tally of Microsoft victims surges to 400 as hackers exploit SharePoint flaw

· 23h

Microsoft says some SharePoint server hackers now use ransomware

The disclosure marks a potential escalation in the campaign, which has already hit at least 400 victims, according to Netherlands-based cybersecurity firm Eye Security.

· 22h

Chinese Hackers Are Exploiting Flaws in Widely Used Software, Microsoft Says

· 2d

Microsoft servers hacked by Chinese groups, says tech giant

The Hacker News4d

Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Company Servers

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), in an alert, said it's aware of active exploitation of CVE-2025-53770, which enables unauthenticated access to SharePoint systems and arbitrary code execution over the network.

SecurityWeek18h

ToolShell Attacks Hit 400+ SharePoint Servers, US Government Victims Named

More information has emerged on the ToolShell SharePoint zero-day attacks, including impact, victims, and threat actors.

SharePoint vulnerability with 9.8 severity rating under exploit across globe

The vulnerability, tracked as CVE-2025-53770, carries a severity rating of 9.8 out of a possible 10. It gives unauthenticated remote access to SharePoint Servers exposed to the Internet. Starting Friday,