"Ransomware Crew Reportedly Exploiting Critical Microsoft SharePoint Vulnerability"

January 12, 2024 at 07:34 PM

•

1 min read

"Ransomware Crew Reportedly Exploiting Critical Microsoft SharePoint Vulnerability" — Photo: The Register

TL;DR Summary

A functional exploit for a critical Microsoft SharePoint vulnerability, CVE-2023-29357, is reportedly in the hands of a ransomware group, despite being added to the US's must-patch list. The vulnerability, which can achieve remote code execution, was first identified in June 2023 and has been actively exploited by cybercriminals. Security experts warn that organizations need to apply manual, SharePoint-specific patches to ensure the fixes are properly applied, as simply applying the June 2023 Patch Tuesday updates won't automatically protect their systems.

Topics:technology #cybersecurity #exploit #microsoft-sharepoint #ransomware #vulnerability

Share this article

Exploit for under-siege SharePoint vuln reportedly in hands of ransomware crew The Register
CISA: Critical Microsoft SharePoint bug now actively exploited BleepingComputer
Act Now: CISA Flags Active Exploitation of Microsoft SharePoint Vulnerability The Hacker News
CISA: Attacks exploiting Microsoft SharePoint flaw underway SC Media
CISA adds patched MS SharePoint server vulnerability to KEV catalog CSO Online

Reading Insights

Total Reads

Unique Readers

Time Saved

3 min

vs 4 min read

Condensed

88%

654 → 80 words

Want the full story? Read the original article

Read on The Register

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights