The name was coined by Dinh Ho Anh, a researcher from Khoa of Viettel Cyber Security, who developed the exploit. The ...

Threat actors continue to exploit ToolShell to gain unauthorized access to on-premises SharePoint servers. On August 6, 2025, the Cybersecurity ...

Indications of compromise and Sigma rules report for your security scanners amid ongoing 'ToolShell' blitz CISA has published ...

Microsoft’s security advisory emphasizes that the emergency patches provide “more robust protections” compared to earlier fixes. CVE-2025-53770 offers enhanced security beyond the CVE-2025-49704 ...

The risk for businesses who haven’t patched the ToolShell vulnerability keeps growing after new reports suggest ransomware ...

Microsoft identified at least three threat groups believed to be affiliated with China that have been exploiting publicly ...

A U.S. nuclear agency was among the victims of the SharePoint vulnerability chain, which was exploited to compromise over 54 ...

Researchers from Palo Alto Networks detail ransomware deployment and malicious backdoors in a campaign against Microsoft ...

The vulnerability, tracked as CVE-2025-53770, carries a severity rating of 9.8 out of a possible 10. It gives unauthenticated ...

Kaspersky GReAT researchers analyzed the published ToolShell exploit and found it alarmingly similar to the 2020 CVE-2020-1147 exploit. This suggests that the CVE-2025-53770 patch is, in fact, an ...

Microsoft released patches for a SharePoint zero-day bug after hackers compromised over 400 servers worldwide using ...

A security patch Microsoft (MSFT.O), opens new tab released this month failed to fully fix a critical flaw in the U.S. tech ...