Techly NewsGet the app

Get the latest tech news

Microsoft fixes three SharePoint zero-day exploits used in series of cyberattacks - how to patch them


Microsoft has pointed the finger at three Chinese nation-state actors. Here's what we know, plus how to guard against future attacks.

"CVE-2025-53770 gives a threat actor the ability to remotely execute code, bypassing identity protections (like single sign-on and multi-factor authentication), giving access to content on the SharePoint server including configurations and system files, opening up lateral access across the Windows domain," Trey Ford, chief information security officer at crowdsourced cybersecurity provider Bugcrowd, told ZDNET. Active since 2012, Linen Typhoon specializes in stealing intellectual property, mainly targeting government, defense, strategic planning, and human rights organizations. "On the evening of July 18, 2025, Eye Security was the first in identifying large-scale exploitation of a newSharePoint remote code execution (RCE)vulnerability chain in the wild," the firm said.

Get the Android app

Or read this on ZDNet

Read more on:

Photo of Microsoft

Microsoft

Photo of Days

Days

Photo of attack

attack

Related news:

News photo

Hundreds of organizations breached by SharePoint mass-hacks

News photo

Copilot Vision on Windows 11 sends data to Microsoft servers

News photo

Microsoft Hack Hits Hundreds of Firms, Agencies as Damage Spreads

« Reversing a Fingerprint Reader Protocol (2021)
Europe's Resistance To Air Conditioning is Softening Due To Climate Change and Recent Heat Waves »