A recent cyberattack exploited a Microsoft vulnerability to breach Canada’s House of Commons, compromising employee and device information. The incident underscores the increasing cyber threats faced by Canadian entities from state and criminal actors. #CVE-2025-53770 #CanadaSecurity
Keypoints
- An unknown threat actor exploited a Microsoft SharePoint zero-day vulnerability to access the House of Commons database.
- The breach exposed sensitive information such as employee details and device management data.
- The attack occurred on a Friday, with ongoing investigations by Canada’s CSE and the House of Commons.
- The vulnerability CVE-2025-53770 has a high CVSS score of 9.8 and is actively exploited in the wild.
- Canada faces escalating cyber threats from nation-states like China, Russia, and Iran targeting critical infrastructure.