Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Global Organizations

Updated on July 20, 2025

A critical security vulnerability in Microsoft SharePoint Server has been weaponized as part of an “active, large-scale” exploitation campaign.
The zero-day flaw, tracked as CVE-2025-53770 (CVSS score: 9.8), has been described as a variant of CVE-2025-49706 (CVSS score: 6.3), a spoofing bug in Microsoft SharePoint Server that was addressed by the tech giant as part of its July 2025 Patch Tuesday…

Read the rest of the story at Read More

Source: The Hacker News

June 10, 2025 Uncategorized

Researchers Uncover 20+ Configuration Ri...

May 28, 2025 Uncategorized

251 Amazon-Hosted IPs Used in Exploit Sc...

October 2, 2024 Uncategorized

Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Global Organizations

Related posts

Researchers Uncover 20+ Configuration Ri...

251 Amazon-Hosted IPs Used in Exploit Sc...

China-Linked CeranaKeeper Targeting Sout...

Leave a Comment Cancel reply

Recent News

Pre-Auth Exploit Chains Found in Commvault Could Enable Remote Code Execution Attacks

Cybercriminals Deploy CORNFLAKE.V3 Backdoor via ClickFix Tactic and Fake CAPTCHA Pages

Hackers Using New QuirkyLoader Malware to Spread Agent Tesla, AsyncRAT and Snake Keylogger

Weak Passwords and Compromised Accounts: Key Findings from the Blue Report 2025

Scattered Spider Hacker Gets 10 Years, $13M Restitution for SIM Swapping Crypto Theft

Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks

DOM-Based Extension Clickjacking Exposes Popular Password Managers to Credential and Data Theft

FBI Warns FSB-Linked Hackers Exploiting Unpatched Cisco Devices for Cyber Espionage

Experts Find AI Browsers Can Be Tricked by PromptFix Exploit to Run Malicious Hidden Prompts

🕵️ Webinar: Discover and Control Shadow AI Agents in Your Enterprise Before Hackers Do