Mastouille

0 message0 participant0 message aujourd’hui

securityaffairs<a href="https://infosec.exchange/tags/ToolShell" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ToolShell</a> under siege: <a href="https://infosec.exchange/tags/Check" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Check</a> <a href="https://infosec.exchange/tags/Point" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Point</a> analyzes Chinese <a href="https://infosec.exchange/tags/APT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#APT</a> Storm-2603 <a href="https://securityaffairs.com/180657/apt/toolshell-under-siege-check-point-analyzes-chinese-apt-storm-2603.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://securityaffairs.com/180657/apt/toolshell-under-siege-check-point-analyzes-chinese-apt-storm-2603.html</a> <a href="https://infosec.exchange/tags/securityaffairs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#securityaffairs</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacking</a>

The New Oil<a href="https://mastodon.thenewoil.org/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> links <a href="https://mastodon.thenewoil.org/tags/Sharepoint" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Sharepoint</a> <a href="https://mastodon.thenewoil.org/tags/ToolShell" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ToolShell</a> attacks to Chinese hackers<a href="https://www.bleepingcomputer.com/news/security/microsoft-sharepoint-toolshell-attacks-linked-to-chinese-hackers/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/microsoft-sharepoint-toolshell-attacks-linked-to-chinese-hackers/</a><a href="https://mastodon.thenewoil.org/tags/China" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#China</a> <a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>

ESET Research<a href="https://infosec.exchange/tags/BREAKING" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#BREAKING</a> <a href="https://infosec.exchange/tags/ESETResearch" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ESETResearch</a> has been monitoring the recently discovered <a href="https://infosec.exchange/tags/ToolShell" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ToolShell</a> zero-day vulnerabilities in <a href="https://infosec.exchange/tags/SharePoint" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SharePoint</a> Server: CVE-2025-53770 and CVE-2025-53771. SharePoint Online in Microsoft 365 is not impacted. <a href="https://www.welivesecurity.com/en/eset-research/toolshell-an-all-you-can-eat-buffet-for-threat-actors/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.welivesecurity.com/en/eset-research/toolshell-an-all-you-can-eat-buffet-for-threat-actors/</a> ESET first detected an attempt to exploit part of the execution chain on July 17 in Germany 🇩🇪. Here, the final <a href="https://infosec.exchange/tags/webshell" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#webshell</a> payload was not delivered. The first time we registered the payload was on July 18 in Italy 🇮🇹. We have since seen active ToolShell exploitation all over the world. We have uncovered several IP addresses that were used in the attacks from July 17 to July 22. The charts show the timeline of the attacks from the three most active of these IP addresses. ToolShell is being exploited by all sorts of threat actors, from petty cybercriminals to state-sponsored groups, among them China 🇨🇳-aligned <a href="https://infosec.exchange/tags/APTs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#APTs</a>. We expect these attacks to continue taking advantage of unpatched systems. IoCs available in our GitHub repo: <a href="https://github.com/eset/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/eset/</a>

IT NewsWhat to know about ToolShell, the SharePoint threat under mass exploitation - Government agencies and private industry have been under sie... - <a href="https://arstechnica.com/security/2025/07/what-to-know-about-toolshell-the-sharepoint-threat-under-mass-exploitation/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://arstechnica.com/security/2025/07/what-to-know-about-toolshell-the-sharepoint-threat-under-mass-exploitation/</a> <a href="https://schleuss.online/tags/vulnerabilities" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerabilities</a> <a href="https://schleuss.online/tags/sharepoint" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sharepoint</a> <a href="https://schleuss.online/tags/toolshell" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#toolshell</a> <a href="https://schleuss.online/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://schleuss.online/tags/exploits" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#exploits</a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#biz</a>&it

securityaffairs<a href="https://infosec.exchange/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> issues emergency patches for <a href="https://infosec.exchange/tags/SharePoint" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SharePoint</a> zero-days exploited in “<a href="https://infosec.exchange/tags/ToolShell" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ToolShell</a>” attacks <a href="https://securityaffairs.com/180197/hacking/microsoft-issues-emergency-patches-for-sharepoint-zero-days-exploited-in-toolshell-attacks.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://securityaffairs.com/180197/hacking/microsoft-issues-emergency-patches-for-sharepoint-zero-days-exploited-in-toolshell-attacks.html</a> <a href="https://infosec.exchange/tags/securityaffairs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#securityaffairs</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacking</a>

heise onlineAlarmstufe Rot für Sharepoint-Administratoren! 🚨 Microsoft hat die ersten Patches für die kritische Sicherheitslücke "ToolShell" veröffentlicht, die seit einigen Tagen für Unruhe in der IT-Sicherheitsbranche sorgt.Zum Artikel: <a href="https://heise.de/-10493989?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://heise.de/-10493989?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon</a><a href="https://social.heise.de/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://social.heise.de/tags/Sharepoint" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Sharepoint</a> <a href="https://social.heise.de/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> <a href="https://social.heise.de/tags/ITSicherheit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ITSicherheit</a> <a href="https://social.heise.de/tags/ToolShell" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ToolShell</a>

Recherches récentes

Options de recherche

Administré par :

Statistiques du serveur :

#toolshell