Tech News
Back to home
Technology

SharePoint vulnerability with 9.8 severity rating under exploit across globe

Source

Ars Technica

Published

TL;DR

AI Generated

A high-severity vulnerability in Microsoft SharePoint Server, with a 9.8 severity rating, is being actively exploited globally, allowing attackers to access sensitive company data and authentication tokens. The vulnerability, CVE-2025-53770, provides unauthenticated remote access to exposed SharePoint Servers. Microsoft confirmed the attacks and released an emergency update to patch the vulnerability in SharePoint Subscription Edition and SharePoint 2019, urging immediate application of the updates. SharePoint 2016 remains unpatched, with Microsoft recommending organizations to install the Antimalware Scan Interface for protection. Cloud-hosted SharePoint Online and Microsoft 365 are not affected by this exploit.

Read Full Article

Similar Articles

What to know about ToolShell, the SharePoint threat under mass exploitation

What to know about ToolShell, the SharePoint threat under mass exploitation

A critical vulnerability in Microsoft's widely used document-sharing app SharePoint has been exploited at a mass scale, impacting government agencies and private industry. The ongoing exploitation, referred to as ToolShell, has caused significant fallout and widespread attacks. The scope and impact of these attacks are challenging to monitor, leading to concerns about the security of SharePoint. This development highlights the importance of addressing vulnerabilities promptly to prevent widespread cyber threats.

Ars Technica
Dr. L.C. Lu on TSMC Advanced Technology Design Solutions

Dr. L.C. Lu on TSMC Advanced Technology Design Solutions

Dr. L.C. Lu, a key figure at TSMC, focuses on design-technology co-optimization, packaging innovations, and AI-driven methodologies for next-gen semiconductor systems. TSMC emphasizes DTCO and DDCL innovations for scaling from N5 to A14 nodes, with NanoFlex and NanoFlex Pro architectures offering efficiency gains. N2P and N2U nodes incorporate advanced DTCO and power delivery optimizations, with hybrid dual-rail architectures achieving significant energy savings. TSMC collaborates with EDA partners for AI integration, enhancing productivity and design quality. Advanced packaging technologies like CoWoS and SoIC play a crucial role in enabling AI scaling, with memory bandwidth and interconnect performance scaling aggressively. TSMC addresses power delivery and thermal management challenges in AI systems through advanced solutions. TSMC's advancements in design methodologies and AI-driven automation promise improved productivity and scalability in chip-package co-design.

SemiWiki
MindsEye's sabotage mission is being slammed as dull and pointless

MindsEye's sabotage mission is being slammed as dull and pointless

Build A Rocket Boy accuses individuals of sabotaging MindsEye's launch, spending over €1 million on damaging efforts. The studio integrates the controversy into a new in-game mission, Blacklist, to showcase evidence of sabotage to players. However, reports describe the mission as lackluster and failing to deliver a compelling narrative. Critics attribute the launch issues to internal problems, such as management and design decisions, casting doubt on the sabotage claims. The saga continues as MindsEye's post-launch turmoil unfolds.

TweakTown
3DPrint.com

The Additive Chicken Coop, Part II: Rescoping

The article discusses the second part of the Additive Chicken Coop project, focusing on rescaling the project. It highlights the challenges faced in enabling JavaScript and cookies to continue reading the content. The article provides insights into the technical aspects of the project and the strategies employed to address the issues encountered during the rescaling process.

3DPrint.com

We use cookies

We use cookies to ensure you get the best experience on our website. For more information on how we use cookies, please see our cookie policy.