See every side of every news story
Get Started
SubscribeLogin
Israel-Hamas Conflict
Artificial Intelligence
Education
Social Media
European Union
Donald Trump
Housing
Taxes
WWE
Property
Wrestling
Natural Disasters
Agriculture
Published loading...Updated

Microsoft alerts businesses, governments to server software attack

UNITED STATES, JUL 21 – The flaw allows attackers to bypass authentication and evade multi-factor protections, with at least 85 servers breached across 29 organizations, officials said.

  • Microsoft alerted businesses and some federal agencies on July 20 about widespread attacks exploiting a zero-day vulnerability in SharePoint server software.
  • The vulnerability, tracked as CVE-2025-53770 and introduced while fixing earlier bugs CVE-2025-49706 and CVE-2025-49704, has been actively exploited since July 18 in waves.
  • The exploit, reportedly called ToolShell, allows attackers full access to SharePoint file systems and connected services like Teams and OneDrive, affecting multiple on-premise SharePoint variants.
  • Eye Security scanned over 8,000 servers worldwide, finding dozens compromised, while CISA warned impacts may be widespread and urged disconnecting affected servers until patched.
  • Microsoft has issued an urgent patch along with updated instructions for SharePoint Server 2019 and the Subscription Edition, while their team continues to develop a solution for SharePoint Server 2016, indicating that some risk remains.
Insights by Ground AI
Does this summary seem wrong?

402 Articles

Winston-Salem JournalWinston-Salem Journal
Lean Left

Microsoft works on patch after SharePoint hack

NEW YORK — Microsoft issued an emergency fix to close off a vulnerability in its widely used SharePoint software that hackers exploited to carry out widespread attacks on businesses and at least some U.S. government agencies.

Read Full Article
The DeskThe Desk
Center

Telecom, government agencies among those targeted by hackers due to Microsoft glitch

(Stock image via Pixabay) Microsoft is warning businesses about a previously-unknown security issue that has been exploited by cyber criminals against businesses and government agencies around the world for the past few weeks. The issue involves SharePoint, software that is widely used to run and manage servers operating Microsoft Windows. The so-called “zero-day” exploit — a term referring to a security flaw unknown to the software maker and th…

Read Full Article
The West AustralianThe West Australian
Lean Right

Microsoft hit with cyber attack, thousands impacted globally

Microsoft has warned of ‘active attacks’ targeting its SharePoint collaboration software, with security researchers noting that organisations worldwide stand to be affected by the breach.

·Australia
Read Full Article
Time MagazineTime Magazine
Lean Left

How to Protect Yourself From the Global Microsoft Hack

Dozens of organizations appear to have been affected over the past few days by hackers targeting Microsoft's SharePoint platform.

·United States
Read Full Article
vrtvrt
Center

"Serious Vulnerability" Discovered in Microsoft Sharepoint: "Attackers Can Gain Full Control of Servers"

A major security vulnerability has been discovered in Microsoft's SharePoint software, server software used by many organizations and companies to share documents. The vulnerability allows attackers to gain full control of the affected servers.

·Antwerp, Belgium
Read Full Article
Ars TechnicaArs Technica
Center

SharePoint vulnerability with 9.8 severity rating under exploit across globe

Authorities and researchers are sounding the alarm over the active mass exploitation of a high-severity vulnerability in Microsoft SharePoint Server that’s allowing attackers to make off with sensitive company data, including authentication tokens used to access systems inside networks. Researchers said anyone running an on-premises instance of SharePoint should assume their networks are breached. The vulnerability, tracked as CVE-2025-53770, ca…

·United States
Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 64% of the sources are Center
64% Center

Factuality 

To view factuality data please Upgrade to Premium

Ownership

To view ownership data please Upgrade to Vantage

IT Security News - cybersecurity, infosecurity news broke the news in on Sunday, July 20, 2025.
Sources are mostly out of (0)

Similar News Topics

Microsoft icon

Microsoft

Hacking icon

Hacking

Business icon

Business

Technology icon

Technology

Cyber Security icon

Cyber Security

United States icon

United States

News
For You
SearchBlindspotLocal