Microsoft patches failed to fix on-prem SharePoint, which is now under zero-day attack

Iain Thomson / theregister - PLUS: China upgrades smartphone surveillance tools; Ring eases anti-snooping stance; and more Infosec In Brief Microsoft has warned users of SharePoint Server that three on-prem versions of the product include a zero-day flaw that is under attack – and th…

#cybersecurity #infosec #microsoft #security

Researchers believe the issue is likely to lead to a large number of victims including governments and enterprises, and warn that attackers are compromising cryptographic keys allowing them to maintain access to victims’ systems even after the affected se

7 months / bsky / @alexmartin.bsky.social / alexmartin.bsky.social

Microsoft SharePoint servers are under attack because of a zero-day exploit in the wild. Cloud versions of SharePoint are unaffected, and Microsoft has issued emergency patches for SharePoint 2019 and SharePoint Subscription Edition servers www.theverge.c

7 months / bsky / @tomwarren.co.uk / tomwarren.co.uk

Warnings issued as hackers actively exploit critical zero-day in Microsoft SharePoint

7 months / therecord

Microsoft patches under-attack SharePoint 2019 and SE

7 months / theregister / Richard Speed

Microsoft SharePoint servers are under attack because of a major security flaw

7 months / theverge / Jess Weatherbed

Microsoft Patches Critical SharePoint Zero-Day, Urges Immediate Updates

7 months / winbuzzer / Markus Kasanmascheff

Microsoft releases emergency fixes for actively exploited SharePoint security flaws

7 months / betanews / Sofia Elizabella Wyciślik-Wilson

Microsoft releases emergency patches for SharePoint RCE flaws exploited in attacks

7 months / bleepingcomputer / Lawrence Abrams

Microsoft patches failed to fix on-prem SharePoint, which is now under zero-day attack

7 months / theregister / Iain Thomson

Active attacks target Microsoft SharePoint zero-day affecting on-premises servers

7 months / siliconangle / Duncan Riley

Back to Top / Sunday, July 20, 2025, 8:20 pm / permalink 10499 / 10 stories in 7 months




Related Stories

Microsoft’s NLWeb Faces Setback with Critical Security Flaw / 7 months

VirusTotal exposes stealth malware in hidden SVG campaign / 5 months

Microsoft Warns of Critical Hybrid Exchange Flaw / 6 months

OpenAI Security Tightened Amid Espionage Concerns / 7 months

Microsoft and CrowdStrike link threat aliases / 9 months

Microsoft’s May 2025 Patch Tuesday security rollout / 9 months

Microsoft enforces MFA for Azure management tools in October / 6 months

NorthFeed Inc.

Disclaimer: The information provided on this website is intended for general informational purposes only. While we strive for accuracy, we do not guarantee the completeness or reliability of the content. Users are encouraged to verify all details independently. We accept no liability for errors, omissions, or any decisions made based on this information.