Tootfinder

Noch einige der zuletzt hier besonders häufig geteilten #News:
Kritische Sharepoint-Sicherheitslücke: Erste Patches für "ToolShell" sind da

Microsoft has observed three named Chinese nation-state actors, Linen Typhoon, Violet Typhoon, and Storm-2603, exploiting the SharePoint vulnerabilities.
https://www.microsoft.com/en-us/security/blog/2025/07/22…

Disrupting active exploitation of on-premises SharePoint vulnerabilities | Microsoft Security Blog
Microsoft has observed two named Chinese nation-state actors, Linen Typhoon and Violet Typhoon, exploiting vulnerabilities targeting internet-facing SharePoint servers. In addition, we have observed another China-based threat actor, tracked as Storm-2603, exploiting these vulnerabilities. Microsoft has released new comprehensive security updates for all supported versions of SharePoint Server (Subscription Edition, 2019, and 2016) that protect customers against these new vulnerabilities. Custom…

What a mess....
#sharepoint #microsoft #cybersecurity

SharePoint ‘ToolShell’ vulnerabilities being exploited in the wild
Sophos X-Ops sees exploitation across multiple customer estates

Researchers say hackers linked to the Chinese government were behind at least some of the recent widespread attacks using the SharePoint RCE vulnerability (Washington Post)

China-backed hackers used Microsoft flaw in attacks, defenders say
Researchers say Chinese actors, along with other criminal hackers, exploited a security flaw in SharePoint software widely used by governments and businesses.

Eine kritische #Sicherheitslücke in #SharePoint-Servern wird derzeit aktiv ausgenutzt.
Betroffen sind lokale Installationen in Unternehmen und Behörden, nicht jedoch #Microsoft365

Microsoft alerts businesses and governments to attacks on SharePoint servers
Microsoft has issued an alert about “active attacks” on server software used by government agencies and businesses to share documents within organizations and recommended security updates that customers should apply immediately.

Simply SharePoint
Great Australian Pods Podcast Directory: #GreatAusPods

Die nächste große Microsoft-Sicherheitslücke, diesmal #SharePoint – und wieder ist die öffentliche Verwaltung besonders betroffen. Wie lange will Deutschland noch zuschauen, wie digitale Souveränität verloren geht? Es braucht endlich mehr Mut für offene, europäische Lösungen! #FAZ (€)

Sharepoint: Experten warnen vor schwerer Sicherheitslücke – Hackerangriffe laufen bereits
Ein Hackerangriff auf das Programm Sharepoint von Microsoft ruft das FBI auf den Plan: Angriffe auf Behörden und Unternehmen über eine neu entdeckte Schwachstelle laufen offenbar bereits.

Heute Schreibmaschinentag: Eines von Peter Mitterhofers Exemplaren im Stadtmuseum Meran, dann das famose Schreibmaschinenmuseum in seinem Geburtsort Partschins. Er baute übrigens auch eine Waschmaschine.

Alarmstufe Rot für Sharepoint-Administratoren! 🚨 Microsoft hat die ersten Patches für die kritische Sicherheitslücke "ToolShell" veröffentlicht, die seit einigen Tagen für Unruhe in der IT-Sicherheitsbranche sorgt.
Zum Artikel: https://heise.de/-1049…

Hold on to your hats and check out today's Metacurity for a ton of major infosec developments you might have missed over the weekend, including
--SharePoint server software security flaw sparked global attacks,
--France probes Musk's X over fraudulent data extraction,
--UK backtracks on encryption backdoors,
--Microsoft to stop Chinese digital escorts,
--Russia is kicking WhatsApp out,
--419k impacted by Louis Vuitton Hong Kong breach,
--UNC38…

SharePoint server software security flaw sparked global attacks
France probes Musk's X over fraudulent data extraction, UK backtracks on encryption backdoors, Microsoft to stop Chinese digital escorts, Russia is kicking WhatsApp out, 419k impacted by Louis Vuitton Hong Kong breach, UNC3886 hit Singapore with cyberattack, much more