Hackers exploiting a zero-day vulnerability in SharePoint

Started by Ibrahim, 2025-07-22 10:22

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Ibrahim
2025-07-22 10:22
Hackers exploiting a zero-day vulnerability in SharePoint are reportedly targeting government agencies.
Lorenzo Franceschi-Bicchierai
Screenshots_2025-07-22-10-21-56.png
According to researchers and news reports, the hackers responsible for the initial wave of attacks that exploit a zero-day in Microsoft SharePoint servers have mainly focused on government organizations.

Over the weekend, the U.S. cybersecurity agency CISA issued an alert indicating that hackers were taking advantage of a previously undisclosed bug — referred to as a "zero-day" — in Microsoft's enterprise data management solution, SharePoint. Although it is still premature to reach conclusive findings, it seems that the hackers who initially began to exploit this vulnerability were aiming at government entities, as stated by Silas Cutler, the principal researcher at Censys, a cybersecurity firm that tracks hacking activities online.

Tech crunch
Pages1