The name was coined by Dinh Ho Anh, a researcher from Khoa of Viettel Cyber Security, who developed the exploit. The ...

The risk for businesses who haven’t patched the ToolShell vulnerability keeps growing after new reports suggest ransomware ...

Microsoft identified at least three threat groups believed to be affiliated with China that have been exploiting publicly ...

Active exploitation of a dangerous flaw in Microsoft SharePoint instances continues, with researchers now observing an ...

Ransomware gangs have escalated a cyberattack campaign targeting Microsoft SharePoint servers, joining forces with suspected ...

A Microsoft SharePoint vulnerability chain has been the focus of continuing attacks by cybercriminals who has teamed up to be ...

Microsoft reportedly used China-based engineers to maintain its exploited SharePoint software, raising urgent national ...

An ongoing cyberattack campaign known as “ToolShell” is exploiting on-premises Microsoft SharePoint Servers and has reportedly compromised organizations worldwide.

Microsoft released patches for a SharePoint zero-day bug after hackers compromised over 400 servers worldwide using ...

More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the ...

Microsoft released a patch Monday for SharePoint Server 2016 that protects customers against a pair of vulnerabilities, which have been widely exploited in a wave of cyberattacks known as “ToolShell.” ...

Dubbed ToolShell, the related vulnerabilities, CVE-2025-53770 and CVE-2025-53771, allow for remote code execution (RCE) and server spoofing in SharePoint.