CVE-2025-53770

Foreign intruders accessed Kansas City weapons plant IT via SharePoint flaws, source says

Cloud, Cybercrime, News, Risk, Vulnerabilities

October 20, 2025

A source familiar with an August response says a foreign actor exploited unpatched Microsoft SharePoint flaws to access the Kansas City National Security Campus IT network. Investigations are ongoing, attribution is disputed between Chinese-linked groups and possible Russian actors, and experts warn the incident highlights gaps between IT and operational technology security.
Canada’s House of Commons Investigates Data Breach Tied to Reported Microsoft Vulnerability Exploitation

Cybercrime, News, Privacy, Risk, Vulnerabilities

August 15, 2025

Canada’s House of Commons is investigating a data breach after a cyberattack reportedly exposed employee information. The Cyber Centre is assisting, and authorities caution that attribution remains complex. The incident comes as Canada and other nations grapple with recently disclosed Microsoft vulnerabilities, including CVE-2025-53770 (ToolShell) and CVE-2025-53786, which have seen active exploitation by various threat…
Active Exploitation Campaign Targets Microsoft SharePoint Zero-Day Flaw

Cybercrime, News, Policy, Vulnerabilities

July 21, 2025

A critical vulnerability in Microsoft SharePoint Server, tracked as CVE-2025-53770, is currently being exploited in a large-scale attack campaign, allowing unauthorized remote code execution. Organizations are urged to implement immediate protective measures.

CVE-2025-53770

Foreign intruders accessed Kansas City weapons plant IT via SharePoint flaws, source says

Canada’s House of Commons Investigates Data Breach Tied to Reported Microsoft Vulnerability Exploitation

Active Exploitation Campaign Targets Microsoft SharePoint Zero-Day Flaw