Microsoft Ties SharePoint Exploits to China-Backed ToolShell Group
Microsoft has linked a wave of SharePoint Server attacks to a China-based threat actor using a tool called ToolShell. The attackers exploited CVE-2025-53770, a critical remote code execution vulnerability in SharePoint Server, to gain unauthorized access to vulnerable systems—even after […]
Microsoft Ties SharePoint Exploits to China-Backed ToolShell Group Read More »
