A critical zero-day vulnerability chain, called “ToolShell,” is actively exploited in Microsoft SharePoint Server on-premises environments. This sophisticated attack vector leverages vulnerabilities to achieve unauthenticated remote code execution (RCE), bypass multi-factor authentication, and enable persistent access. The flaws impact widely deployed SharePoint versions and are being leveraged by diverse threat actors, including state-sponsored groups and […]
The post Hackers Weaponize SharePoint 0-Day: Widespread Exploitation Ongoing appeared first on SecPod Blog.
