#MicrosoftSharePoint

Microsoft SharePoint RCE bug exploited to breach corporate network

November 2, 2024 by Xynik

November 2, 2024 at 07:40PM A Microsoft SharePoint vulnerability (CVE-2024-38094) is being actively exploited for unauthorized network access. Attackers exploited this RCE flaw to compromise systems, disable security measures, and conduct lateral movement within networks. Rapid7’s report highlights an ongoing threat, urging administrators to apply updates from July 2024 promptly to mitigate risks. **Meeting Takeaways** … Read more

Microsoft SharePoint Vuln Is Under Active Exploit

October 23, 2024 by Xynik

October 23, 2024 at 03:43PM A high-severity deserialization vulnerability in Microsoft SharePoint, CVE-2024-38094, is actively exploited, allowing authenticated attackers with Site Owner permissions to execute arbitrary code. Rated 7.2 on the CVSS, the flaw has patches available since July. Federal agencies must implement fixes by Nov. 12 due to potential exploitation risks. ### Meeting Takeaways: … Read more

CISA Warns of Active Exploitation of Microsoft SharePoint Vulnerability (CVE-2024-38094)

October 23, 2024 by Xynik

October 23, 2024 at 09:55AM A critical vulnerability in Microsoft SharePoint (CVE-2024-38094) has been added to the CISA’s KEV catalog, allowing remote code execution for authenticated attackers. Patches were released in July 2024, and agencies must apply them by November 12, 2024. Meanwhile, a zero-day flaw in Samsung processors also poses exploitation risks. ### Meeting … Read more

CISA Warns Recent Microsoft SharePoint RCE Flaw Exploited in Attacks

October 23, 2024 by Xynik

October 23, 2024 at 07:19AM CISA has included a new remote code execution vulnerability for Microsoft SharePoint Server in its KEV catalog, indicating that the flaw is being actively exploited in attacks. ### Meeting Takeaways: 1. **CISA Update**: The Cybersecurity and Infrastructure Security Agency (CISA) has included a new vulnerability in their Known Exploited Vulnerabilities … Read more

Fortinet confirms data breach after hacker claims to steal 440GB of files

September 12, 2024 by Xynik

September 12, 2024 at 02:03PM Fortinet, a cybersecurity company, has confirmed a data breach after a threat actor claimed to have stolen 440GB of files from its Microsoft Sharepoint server. Based on the meeting notes, it appears that cybersecurity company Fortinet has confirmed a data breach after a threat actor claimed to have stolen 440GB … Read more

CISA Warns: Hackers Actively Attacking Microsoft SharePoint Vulnerability

March 27, 2024 by Xynik

March 27, 2024 at 10:09AM The US Cybersecurity and Infrastructure Security Agency (CISA) has added a critical security flaw in Microsoft SharePoint Server, CVE-2023-24955, to its Known Exploited Vulnerabilities catalog. The flaw allows authenticated attackers with Site Owner privileges to execute arbitrary code. Federal agencies must apply the fixes by April 16, 2024, to secure … Read more

CISA Adds 9.8 ‘Critical’ Microsoft SharePoint Bug to its KEV Catalog

January 12, 2024 by Xynik

January 12, 2024 at 05:43PM The Cybersecurity and Infrastructure Security Agency (CISA) added a critical privilege escalation vulnerability, CVE-2023-29357, affecting Microsoft SharePoint servers to its list of Known Exploited Vulnerabilities (KEV). This vulnerability, rated 9.8 out of 10, allows attackers to bypass authentication and gain administrative access. Despite a June patch, active exploitation continues, as … Read more

Exploit for under-siege SharePoint vuln reportedly in hands of ransomware crew

January 12, 2024 by Xynik

January 12, 2024 at 02:49PM Security experts have warned about a ransomware group exploiting a critical Microsoft SharePoint vulnerability, CVE-2023-29357, which can lead to remote code execution. This vulnerability was added to the US’s must-patch list, giving agencies three weeks to patch it. The exploit chain has been a concern, and patching is crucial to … Read more

CISA: Critical Microsoft SharePoint bug now actively exploited

January 12, 2024 by Xynik

January 12, 2024 at 02:47PM CISA warned of active exploitation of critical Microsoft SharePoint vulnerabilities, including CVE-2023-29357, which allows attackers to gain admin privileges using spoofed JWT tokens. When chained with another bug, remote code execution is possible. These exploits have gained attention after a successful demo at the Pwn2Own contest, leading to the release … Read more