New vulnerability discovered in Microsoft SharePoint being exploited by cyber attackers

The U.S. federal government and cybersecurity researchers have identified a security bug in Microsoft’s SharePoint that is being actively exploited by hackers. The bug, officially known as CVE-2025-53770, affects versions of SharePoint that are set up and managed on companies’ own servers. This software is used by businesses to store, share, and manage their internal files.

The Vulnerability and Exploitation

The security flaw, described as a “zero-day” vulnerability, has left many businesses vulnerable to cyber intrusions. Hackers can exploit the bug to steal private digital keys from SharePoint servers without needing any login credentials. Once access is gained, hackers can plant malware, access files, and potentially compromise other connected applications like Outlook, Teams, and OneDrive.

Mitigating the Risk

Microsoft is working on security fixes to address the vulnerability, but in the meantime, affected customers are advised to patch the bug and rotate their digital keys to prevent further compromise. Organizations are urged to take immediate action to secure their systems, including considering disconnecting potentially affected servers from the internet.

Previous Cyberattacks Targeting Microsoft Customers

This latest cyberattack on SharePoint servers is part of a trend where hackers target Microsoft products and services. In recent years, there have been incidents involving China-backed hacking groups exploiting vulnerabilities in Microsoft Exchange email servers and cloud systems. Additionally, Microsoft has reported repeated intrusions from hackers associated with the Russian government.

The cybersecurity community is closely monitoring the situation, and affected customers are encouraged to take steps to secure their systems and data. If you have information about the SharePoint cyberattacks or if you have been impacted, you can securely contact the reporter for further assistance.