Microsoft has issued an urgent alert about a zero-day exploit in on-premise SharePoint servers, which can allow attackers to gain persistent access and steal cryptographic keys. Organizations worldwide, especially governments and large enterprises, are advised to implement immediate mitigations and apply patches when available to prevent widespread compromise. #CVE-2025-53770 #SharePointSecurity
Keypoints
- Threat actors are actively exploiting a zero-day vulnerability in on-premise SharePoint servers globally.
- Microsoft released a security update addressing CVE-2025-53770 and CVE-2025-53771 early Monday morning.
- Organizations are advised to reconfigure or disconnect SharePoint until patches are applied due to the severity of the threat.
- The attackers are bypassing identity controls to access systems, exfiltrate data, and steal cryptographic keys.
- Compromise of cryptographic keys complicates remediation and requires additional security measures beyond patching.
Read More: https://therecord.media/microsoft-sharepoint-zero-day-vulnerability-exploited-globally