See every side of every news story
Get Started
SubscribeLogin
Published loading...Updated

Microsoft Issues Emergency Fix for Active SharePoint Zero-Day Exploit

UNITED STATES, JUL 23 – Over 85 servers in 29 organizations have been compromised as Chinese state-backed hackers exploit unpatched SharePoint flaws to gain full remote control, CISA and Microsoft warn.

  • On Sunday, July 20, 2025, Microsoft Corp. issued an emergency security update for a SharePoint Server flaw, as attacks exploiting the zero-day threaten organizations worldwide.
  • Despite July Patch Tuesday fixes, Microsoft disclosed two flawed patches that failed to address earlier issues, allowing attackers to bypass the update and uncover two zero-day vulnerabilities.
  • Chaining CVE-2025-53770 and CVE-2025-53771 bypasses authentication to execute malicious code, with CVE-2025-53770 permitting unauthenticated remote code execution, while chaining it with CVE-2025-53771 bypasses authentication to execute malicious code.
  • Following the exploit's discovery, researchers reported that two government-backed crews are exploiting the zero-days, and Eye Security researchers reported dozens of servers infected with ToolShell after spotting exploitation on July 18, 2025.
  • Future threats could leverage these exploits against unpatched SharePoint servers, and CISA advises enabling AMSI, deploying Defender Antivirus and disconnecting servers until patches are applied.
Insights by Ground AI
Does this summary seem wrong?

211 Articles

Al ArabiyaAl Arabiya
Reposted by
ZawyaZawya
Lean Right

Microsoft server hack has compromised 400 organizations, researchers say

·Saudi Arabia
Read Full Article
ZDNetZDNet
Center

Microsoft fixes two SharePoint zero-days under attack, but one is still unresolved - how to patch

Microsoft has pointed the finger at three Chinese nation-state actors. Here's what we know, plus how to guard against future attacks.

·United States
Read Full Article
Toronto SunToronto Sun
Right

Tally of Microsoft victims surges to 400 as hackers capitalize on SharePoint flaw

The number of companies and organizations compromised by a security vulnerability in Microsoft Corp.’s SharePoint servers is increasing rapidly, with the tally of victims soaring more than six-fold in a few days, according to one research firm.

·Toronto, Canada
Read Full Article
Il Fatto QuotidianoIl Fatto Quotidiano
Lean Left

Hacker Attack on Sharepoint: 400 Victims Between Governments and Companies

They increase the victims of the large-scale hacker attack by exploiting a vulnerability of SharePoint, to the web platform for collaboration, content management and the creation of Microsoft's corporate websites. The US group has attributed the action also to Chinese actors. Accused that it outraged Beijing. According to estimates of the Dutch security company Eye Security, hackers have violated the data of about 400 government agencies, compan…

·Rome, Italy
Read Full Article
9to5Mac9to5Mac
Center

Thousands of companies at risk from Microsoft Sharepoint security flaw

More than 10,000 organizations around the world are at risk from hackers after a serious security flaw was discovered in...

Read Full Article
Evening StandardEvening Standard
Reposted by
perspectivemedia.comperspectivemedia.com
Center

Microsoft says Chinese hackers ‘exploited vulnerabilities’ in software servers

The tech giant said the hackers breached its SharePoint document software servers to target major firms and government agencies.

·London, United Kingdom
Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 52% of the sources are Center
52% Center

Factuality 

To view factuality data please Upgrade to Premium

Ownership

To view ownership data please Upgrade to Vantage

Tech Radar broke the news in United Kingdom on Sunday, July 20, 2025.
Sources are mostly out of (0)

Similar News Topics

Microsoft icon

Microsoft

Hacking icon

Hacking

Business icon

Business

Software icon

Software

Technology icon

Technology

Cyber Security icon

Cyber Security

United States icon

United States

News
For You
SearchBlindspotLocal