A widespread zero-day vulnerability in Microsoft SharePoint, ToolShell (CVE-2025-53770/53771), has led to over 396 compromised systems affecting organizations globally. The attacks are highly targeted, primarily impacting government agencies and strategic institutions, with ongoing threats expected. #SharePointZeroDay #ToolShellVulnerability
Keypoints
- The recent SharePoint zero-day exploited by state-linked groups has compromised hundreds of systems across multiple countries.
- Most affected organizations are government agencies, especially in the US, with targeted campaigns implying intelligence-driven motives.
- The attack has been identified in 41 countries, with the US, Mauritius, Germany, and France being the most impacted.
- Exploitation tools like Metasploit now make it easier for low-skilled hackers to use the vulnerability.
- Experts warn that the threat is likely to persist, with increased ransomware and supply chain attacks anticipated.
Read More: https://www.infosecurity-magazine.com/news/396-sharepoint-systems-compromised/