Update, July 21, 2025: This story, originally published on July 20, has been updated to include additional expert comments regarding the global zero-day attack impacting Microsoft on-premise ...

Update 7/21/25: Added links to the security updates for Microsoft SharePoint 2019. Critical zero-day vulnerabilities in Microsoft SharePoint, tracked as CVE-2025-53770 and CVE-2025-53771, have been ...

Microsoft has released emergency SharePoint security updates for two zero-day vulnerabilities tracked as CVE-2025-53770 and CVE-2025-53771 that have compromised services worldwide in "ToolShell" ...

On Sunday, July 20, Microsoft Corp. issued an emergency security update for a vulnerability in SharePoint Server that is actively being exploited to compromise vulnerable organizations. The patch ...

Microsoft has issued two emergency updates after a vulnerability in Microsoft's SharePoint server software was exploited by hackers over the weekend to carry out attacks on businesses and U.S. federal ...

Update July 22, 2025: Microsoft has updated its blog and advisories, adding a patch for on-premises SharePoint 2016 -- noting again that related vulnerabilities do not affect SharePoint Online in ...

The security update for SharePoint Server 2016 means that patches for ‘all supported versions of SharePoint’ are now available to protect against a pair of widely exploited vulnerabilities, the tech ...

Microsoft has patched three critical zero-day SharePoint security flaws that hackers have already exploited to attack more vulnerable organizations. Responding to the exploits, the software giant ...

SharePoint’s cloud-based platform remains unaffected, with the vulnerabilities limited to on-premises installations, Microsoft said. Microsoft has published emergency security patches to protect users ...

Microsoft has issued two emergency updates after a vulnerability in Microsoft's SharePoint server software was exploited by hackers over the weekend to carry out attacks on businesses and U.S. federal ...

More than 400 systems have been compromised so far, according to researchers at Eye Security, and reports indicate that federal education and energy agencies are among the victims. More than 400 ...

Organisations running on-premise instances of Microsoft’s SharePoint collaboration and document management platform should update without delay after multiple reports of an as-yet unidentified party ...