Forbes

Microsoft Confirms Global SharePoint Attack — Emergency Update Issued

Update, July 21, 2025: This story, originally published on July 20, has been updated to include additional expert comments regarding the global zero-day attack impacting Microsoft on-premise ...
Hosted on MSN

Why Microsoft Is Urging Security Updates for SharePoint Customers

Microsoft confirmed “active attacks” targeting SharePoint customers and urged clients in a blog post over the weekend to immediately apply security updates. The attacks are exploiting vulnerabilities ...
Bleeping Computer

Microsoft releases emergency patches for SharePoint RCE flaws exploited in attacks

Microsoft has released emergency SharePoint security updates for two zero-day vulnerabilities tracked as CVE-2025-53770 and CVE-2025-53771 that have compromised services worldwide in "ToolShell" ...
CRN

Microsoft Releases Final Patch For SharePoint Server Against ‘ToolShell’ Attacks

The security update for SharePoint Server 2016 means that patches for ‘all supported versions of SharePoint’ are now available to protect against a pair of widely exploited vulnerabilities, the tech ...
Dark Reading

Microsoft Rushes Emergency Patch for Actively Exploited SharePoint 'ToolShell' Bug

Microsoft released updates today to patch a critical zero-day flaw in Microsoft SharePoint Server that attackers already have been hammering in an ongoing wave of attacks against US federal and state ...
Computer Weekly

April Patch Tuesday brings zero-days in Defender, SharePoint Server

The latest monthly Patch Tuesday update from Microsoft landed earlier on 14 April, including two notable zero-day flaws amid ...