News

The Register on MSN1h
Microsoft patches failed to fix on-prem SharePoint, which is now under zero-day attack
PLUS: China upgrades smartphone surveillance tools; Ring eases anti-snooping stance; and more Infosec In Brief Microsoft has warned users of SharePoint Server that three on-prem versions of the ...
SecurityWeek4h
SharePoint Under Attack: Microsoft Warns of Zero-Day Exploited in the Wild – No Patch Available
Microsoft warned SharePoint Server users of a vulnerability dubbed ToolShell in the software that was assigned CVE-2025-53770 ...
The Hacker News9h
Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Company Servers
The zero-day flaw, tracked as CVE-2025-53770 (CVSS score: 9.8), has been described as a variant of CVE-2025-49706 (CVSS score: 6.3), a spoofing bug in Microsoft SharePoint Server that was addressed by ...
Microsoft SharePoint zero-day exploited in RCE attacks, no patch available
A critical zero-day vulnerability in Microsoft SharePoint, tracked as CVE-2025-53770, has been actively exploited since at ...
Google’s Chrome Emergency Patch Fixes a High-Severity Bug – Users Should Update Immediately
Google has patched Chrome zero-day CVE-2025-6558, which is being actively exploited in the wild. Users are urged to update ...