Tag: attackers
-
The Register: Coyote malware abuses Microsoft’s UI Automation to hunt banking creds
Source URL: https://www.theregister.com/2025/07/24/coyote_malware_microsoft_uia/ Source: The Register Title: Coyote malware abuses Microsoft’s UI Automation to hunt banking creds Feedly Summary: Some coyotes hunt squirrels, this one hunts users’ financial apps A new variant of the Coyote banking trojan abuses Microsoft’s UI Automation (UIA), making it the first reported malware to use UIA for credential theft.… AI…
-
The Register: Microsoft SharePoint victim count hits 400+ orgs in ongoing attacks
Source URL: https://www.theregister.com/2025/07/23/microsoft_sharepoint_400_orgs/ Source: The Register Title: Microsoft SharePoint victim count hits 400+ orgs in ongoing attacks Feedly Summary: US DOE among breached government agencies More than 400 organizations have been compromised in the Microsoft SharePoint attack, according to Eye Security, which initially sounded the alarm on the mass exploitation last Friday, even before Redmond…
-
Slashdot: US Nuclear Weapons Agency ‘Among 400 Organizations Breached By Chinese Hackers’
Source URL: https://news.slashdot.org/story/25/07/23/1652240/us-nuclear-weapons-agency-among-400-organizations-breached-by-chinese-hackers?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: US Nuclear Weapons Agency ‘Among 400 Organizations Breached By Chinese Hackers’ Feedly Summary: AI Summary and Description: Yes Summary: A cyber-espionage campaign targeting unpatched Microsoft SharePoint vulnerabilities has compromised around 400 organizations globally, including significant US government agencies. This underscores the critical need for robust patch management and security…
-
The Cloudflare Blog: Cloudflare protects against critical SharePoint vulnerability, CVE-2025-53770
Source URL: https://blog.cloudflare.com/cloudflare-protects-against-critical-sharepoint-vulnerability-cve-2025-53770/ Source: The Cloudflare Blog Title: Cloudflare protects against critical SharePoint vulnerability, CVE-2025-53770 Feedly Summary: Microsoft disclosed two critical vulnerabilities, CVE-2025-53771 and CVE-2025-53770, that are exploited to attack SharePoint servers. AI Summary and Description: Yes **Summary:** The text discusses the critical CVE-2025-53770 vulnerability in Microsoft SharePoint that allows remote code execution and highlights…
-
The Register: Surprise, surprise: Chinese spies, IP stealers, other miscreants attacking Microsoft SharePoint servers
Source URL: https://www.theregister.com/2025/07/22/chinese_groups_attacking_microsoft_sharepoint/ Source: The Register Title: Surprise, surprise: Chinese spies, IP stealers, other miscreants attacking Microsoft SharePoint servers Feedly Summary: With more to come, no doubt At least three Chinese groups are attacking on-premises SharePoint servers via a couple of recently disclosed Microsoft bugs, according to Redmond.… AI Summary and Description: Yes **Summary:** The…
-
Cisco Talos Blog: ToolShell: Details of CVEs Affecting SharePoint Servers
Source URL: https://blog.talosintelligence.com/toolshell-affecting-sharepoint-servers/ Source: Cisco Talos Blog Title: ToolShell: Details of CVEs Affecting SharePoint Servers Feedly Summary: Cisco Talos is aware of the ongoing exploitation of CVE-2025-53770 and CVE-2025-53771 in the wild. These are path traversal vulnerabilities affecting SharePoint Server Subscription Edition, SharePoint Server 2016, and SharePoint Server 2019. AI Summary and Description: Yes **Summary:**…
-
Krebs on Security: Microsoft Fix Targets Attacks on SharePoint Zero-Day
Source URL: https://krebsonsecurity.com/2025/07/microsoft-fix-targets-attacks-on-sharepoint-zero-day/ Source: Krebs on Security Title: Microsoft Fix Targets Attacks on SharePoint Zero-Day Feedly Summary: On Sunday, July 20, Microsoft Corp. issued an emergency security update for a vulnerability in SharePoint Server that is actively being exploited to compromise vulnerable organizations. The patch comes amid reports that malicious hackers have used the Sharepoint…