Microsoft Urgently Patches SharePoint Zero-Day Exploited in Global Cyberattacks

July 21, 2025 at 03:30 AM

•

1 min read

Microsoft Urgently Patches SharePoint Zero-Day Exploited in Global Cyberattacks — Photo: The Hacker News

TL;DR Summary

Microsoft has released urgent security patches for actively exploited vulnerabilities in on-premises SharePoint servers, including a critical RCE flaw (CVE-2025-53770) and a spoofing flaw (CVE-2025-53771), amid ongoing cyber attacks targeting organizations like banks, universities, and government agencies. The vulnerabilities, which do not affect SharePoint Online, have been exploited since July, prompting urgent recommendations for organizations to update, rotate keys, and enhance defenses to prevent further breaches.

Topics:business #cyber-attack #remote-code-execution #security-patch #sharepoint #technology #vulnerability

Share this article

Microsoft Releases Urgent Patch for SharePoint RCE Flaw Exploited in Ongoing Cyber Attacks The Hacker News
Global hack on Microsoft product hits U.S., state agencies, researchers say The Washington Post
Microsoft alerts businesses, governments to server software attack Reuters
Microsoft Server Software Comes Under Widespread Cyberattack (MSFT) Bloomberg.com
Microsoft SharePoint servers under attack via zero-day vulnerability with no patch (CVE-2025-53770) Help Net Security

Reading Insights

Total Reads

Unique Readers

Time Saved

4 min

vs 5 min read

Condensed

92%

809 → 66 words

Want the full story? Read the original article

Read on The Hacker News

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights