SharePoint Mayhem: Zero-Day Vulnerability Sparks Global Cyber Chaos
The SharePoint zero-day ToolShell vulnerability (CVE-2025-53770/53771) has compromised 396 systems across 41 countries. The US leads with 31% of attacks, and Mauritius ranks surprisingly high due to US government presence. While the vulnerability spread like gossip at a family reunion, experts foresee more organizations joining the “I Was Hacked” club.
Hot Take:
Looks like Microsoft SharePoint decided to throw a global house party and forgot to lock the doors. With 396 systems compromised and counting, it’s safe to say the guest list has gotten way out of hand. The cybercriminals are doing the cha-cha in the U.S., while Mauritius is surprisingly leading the conga line. Who knew SharePoint could be the life of the party? Time for some serious bouncer action—or at least a password change!
Key Points:
- 396 systems compromised due to Microsoft SharePoint’s zero-day vulnerability ToolShell.
- Compromise affected at least 145 organizations in 41 countries, with the U.S. taking the top spot.
- Government sector hit hardest, accounting for 30% of infections.
- China-linked actors initially blamed, but the exploit is now public and widely used.
- Eye Security advises immediate patching and threat hunting for on-premises SharePoint users.