Active Attacks Targeting On-premises SharePoint Server

⁨6⁩ ⁨likes⁩

Submitted ⁨⁨6⁩ ⁨days⁩ ago⁩ by ⁨mhewitt@infosec.pub⁩ to ⁨cybersecurity@infosec.pub⁩

https://www.cisa.gov/news-events/alerts/2025/07/20/microsoft-releases-guidance-exploitation-sharepoint-vulnerability-cve-2025-53770

Network IOCs:

107.191.58[.]76
104.238.159[.]149
96.9.125[.]147

Vulnerabilities:

CVE-2025-53770 (new, no patch as of 2025-07-20)
CVE-2025-49704 (2025-07 patch)
CVE-2025-49706 (2025-07 patch)

Also see

Comments

Sort:hotnew top