News

American Hospital Association8d

Ongoing Attack Impacting Microsoft SharePoint Servers Managed on Premises

There is an ongoing attack targeting flaws in Microsoft’s SharePoint server software. Microsoft has published guidance on protecting vulnerable systems, and these vulnerabilities only impact ...

Surprise, surprise: Chinese spies, IP stealers, other miscreants attacking Microsoft SharePoint servers

Two of the crews behind the zero-day attacks are government-backed: Linen Typhoon (aka Emissary Panda, APT27) and Violet ...

Attacks on Microsoft Sharepoint: What admins need to do after patching

Closing the gaps is not enough against the current toolshell attacks. After all, attackers could already be inside. We show ...
CIO Dive4d

What we know about the Microsoft SharePoint attacks

Researcher Khoa Dinh originally discovered the attack chain, and earlier this month, Code White GmbH was able to reproduce ...
The Register on MSN8d

Microsoft patches failed to fix on-prem SharePoint, which is now under zero-day attack

PLUS: China upgrades smartphone surveillance tools; Ring eases anti-snooping stance; and more Infosec In Brief Microsoft has warned users of SharePoint Server that three on-prem versions of the ...
TechBooky8d

Microsoft Warns of Critical SharePoint Zero-day Vulnerability

Microsoft is racing to contain a fast‑moving zero‑day campaign against on‑premises SharePoint Server after researchers ...

"We’re witnessing an urgent and active threat" — Microsoft SharePoint "ToolShell" vulnerability is being attacked globally

The term "zero-day" attack refers to when a previously unknown vulnerability is targeted. Tens of thousands of servers are ...