BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap
/in General NewsThe PrimeTrip VR2 Max is the coolest car charger I’ve ever tested. Here’s why.
Latest news – Read More
Microsoft Fix Targets Attacks on SharePoint Zero-Day
/in General NewsOn Sunday, July 20, Microsoft Corp. issued an emergency security update for a vulnerability in SharePoint Server that is actively being exploited to compromise vulnerable organizations. The patch comes amid reports that malicious hackers have used the Sharepoint flaw to breach U.S. federal and state agencies, universities, and energy companies.
Image: Shutterstock, by Ascannio.
In an advisory about the SharePoint security hole, a.k.a. CVE-2025-53770, Microsoft said it is aware of active attacks targeting on-premises SharePoint Server customers and exploiting vulnerabilities that were only partially addressed by the July 8, 2025 security update.
The Cybersecurity & Infrastructure Security Agency (CISA) concurred, saying CVE-2025-53770 is a variant on a flaw Microsoft patched earlier this month (CVE-2025-49706). Microsoft notes the weakness applies only to SharePoint Servers that organizations use in-house, and that SharePoint Online and Microsoft 365 are not affected.
The Washington Post reported on Sunday that the U.S. government and partners in Canada and Australia are investigating the hack of SharePoint servers, which provide a platform for sharing and managing documents. The Post reports at least two U.S. federal agencies have seen their servers breached via the SharePoint vulnerability.
According to CISA, attackers exploiting the newly-discovered flaw are retrofitting compromised servers with a backdoor dubbed “ToolShell” that provides unauthenticated, remote access to systems. CISA said ToolShell enables attackers to fully access SharePoint content — including file systems and internal configurations — and execute code over the network.
Researchers at Eye Security said they first spotted large-scale exploitation of the SharePoint flaw on July 18, 2025, and soon found dozens of separate servers compromised by the bug and infected with ToolShell. In a blog post, the researchers said the attacks sought to steal SharePoint server ASP.NET machine keys.
“These keys can be used to facilitate further attacks, even at a later date,” Eye Security warned. “It is critical that affected servers rotate SharePoint server ASP.NET machine keys and restart IIS on all SharePoint servers. Patching alone is not enough. We strongly advise defenders not to wait for a vendor fix before taking action. This threat is already operational and spreading rapidly.”
Microsoft’s advisory says the company has issued updates for SharePoint Server Subscription Edition and SharePoint Server 2019, but that it is still working on updates for supported versions of SharePoint 2019 and SharePoint 2016.
CISA advises vulnerable organizations to enable the anti-malware scan interface (AMSI) in SharePoint, to deploy Microsoft Defender AV on all SharePoint servers, and to disconnect affected products from the public-facing Internet until an official patch is available.
The security firm Rapid7 notes that Microsoft has described CVE-2025-53770 as related to a previous vulnerability — CVE-2025-49704, patched earlier this month — and that CVE-2025-49704 was part of an exploit chain demonstrated at the Pwn2Own hacking competition in May 2025. That exploit chain invoked a second SharePoint weakness — CVE-2025-49706 — which Microsoft unsuccessfully tried to fix in this month’s Patch Tuesday.
Microsoft also has issued a patch for a related SharePoint vulnerability — CVE-2025-53771; Microsoft says there are no signs of active attacks on CVE-2025-53771, and that the patch is to provide more robust protections than the update for CVE-2025-49706.
This is a rapidly developing story. Any updates will be noted with timestamps.
Krebs on Security – Read More
Why I highly recommend the M4 MacBook Air to most people (and now it’s on sale)
/in General NewsApple’s M4 MacBook Air elevates the ultraportable game with boosted memory, improved external display support, and a surprisingly competitive price – especially at $150 off.
Latest news – Read More
This lightweight Linux distro makes switching from Windows 10 easy
/in General NewsLubuntu is a fast, no-frills Linux distribution for the masses – and it’s perfect for reviving older hardware. Here’s why.
Latest news – Read More
Installing apps on Linux? 4 ways it’s different than any other OS – and mistakes to avoid
/in General NewsIf I want my system to run smoothly and securely, I have to take a different route on Linux.
Latest news – Read More
Don’t miss your chance to exhibit at TechCrunch Disrupt 2025
/in General NewsTechCrunch Disrupt 2025 is just around the corner, and with more than 10,000 startup and VC leaders heading to Moscone West in San Francisco this October 27 to 29, the Expo Hall is where connections get made and business gets done. If you’ve been thinking about showcasing your company, consider this your nudge — exhibitor […]
Security News | TechCrunch – Read More
New zero-day bug in Microsoft SharePoint under widespread attack
/in General NewsSecurity researchers say Microsoft customers should take immediate action to defend against the ongoing cyberattacks, and must assume they have already been compromised.
Security News | TechCrunch – Read More
My 8 ChatGPT Agent tests produced only 1 near-perfect result – and a lot of alternative facts
/in General NewsCan ChatGPT Agent replace your assistant? No, and my in-depth testing proves it. Here’s what it can – and can’t – do.
Latest news – Read More
Indian crypto exchange CoinDCX confirms $44 million stolen during hack
/in General NewsThe crypto exchange, the largest in India, said it plans to absorb the costs of the breach.
Security News | TechCrunch – Read More
Microsoft Confirms Hackers Exploiting SharePoint Flaws, Patch Now
/in General NewsMicrosoft has released new security updates to fix two serious vulnerabilities affecting on-premises SharePoint servers, warning that attackers…
Hackread – Latest Cybersecurity, Hacking News, Tech, AI & Crypto – Read More