The Register: Microsoft patches failed to fix on-prem SharePoint, which is now under zero-day attack

Jul 21, 2025

—

Source URL: https://www.theregister.com/2025/07/21/infosec_in_brief/
Source: The Register
Title: Microsoft patches failed to fix on-prem SharePoint, which is now under zero-day attack

Feedly Summary: PLUS: China upgrades smartphone surveillance tools; Ring eases anti-snooping stance; and more
Infosec In Brief Microsoft has warned users of SharePoint Server that three on-prem versions of the product include a zero-day flaw that is under attack – and that its own failure to completely fix past problems is the cause.…

AI Summary and Description: Yes

Summary: The text discusses significant security vulnerabilities in Microsoft SharePoint Server, particularly highlighting a zero-day flaw that is currently being exploited. This development is critical for IT and security professionals, as it underscores the need for vigilance and prompt action in addressing security weaknesses in infrastructure.

Detailed Description: The provided content touches on security issues related to software infrastructure, specifically within the context of Microsoft SharePoint Server.

– **Zero-Day Vulnerability**: Microsoft has disclosed that three on-premises versions of SharePoint Server are affected by a zero-day vulnerability. This is a critical concern for organizations utilizing the software, as it implies potential exploitation by attackers.
– **Exploitation in the Wild**: The fact that this vulnerability is under active attack heightens the urgency for organizations to apply security patches or implement protective measures to mitigate risks.
– **Historical Context of Security Issues**: Microsoft acknowledges its lapses in addressing previous vulnerabilities, suggesting that legacy issues may complicate the current security landscape for users.

For security professionals, this information carries several practical implications:
– **Risk Mitigation**: Organizations must prioritize updates and patches to their SharePoint installations to combat the zero-day vulnerability effectively.
– **Incident Response Readiness**: Teams should enhance their incident response plans to prepare for potential breaches that could arise from this flaw.
– **Ongoing Monitoring**: Continuous monitoring of the network and system behavior is vital to detect any unauthorized access or exploitation attempts related to this zero-day issue.

The text ultimately emphasizes the critical need for robust security practices in the realm of software infrastructure, particularly for widely-used applications like SharePoint Server.

1 2 2025 5 7 a access Act AI and anti app Application applications art as at ated attack attackers Behavior being Bi breach breaches by C CERN China CI closed co content Context continuous continuous monitoring core critical Current D day day attack day vulnerability de development e edge effective exp exploit Exploitation fact fail for g Gen GIS Go grade H high Highlight HR http HTTPS implications in incident incident response incident response plan incident response plans information infosec infrastructure installation io issue ite k knowledge l Lance land law led Li lm M measures Micro Microsoft Microsoft SharePoint mitigation Monitor monitoring N network NGO no o of on one OPM organization organizations oS Patch patches point potential practical implications practices pre premises pro problem product professionals prompt protective measures ps R RCE readiness real response Response Plan Risk risk mitigation risks Ro robust security robust security practices RoT s sec security security issues security landscape security patch security patches security practices security professionals Security Vulnerabilities security weakness server SHA SharePoint SharePoint Server Sig size software software infrastructure source specific SSE surveillance surveillance tool system system behavior T team Teams ted text the to tool tools Tor TP two unauthorized access under up update updates upgrade upgrades US use user Users uth V version vigilance vulnerabilities vulnerability Ware Wi x z zero zero-day zero-day vulnerability