Chinese Threat Actors Exploit ToolShell SharePoint Flaw Weeks After Microsoft’s July Patch

October 22, 2025
No Comments

Chinese Threat Actors Exploit ToolShell SharePoint Flaw Weeks After Microsoft’s July Patch

Threat actors with ties to China exploited the ToolShell security vulnerability in Microsoft SharePoint to breach a telecommunications company in the Middle East after it was publicly disclosed and patched in July 2025.
Also targeted were government departments in an African country, as well as government agencies in South America, a university in the U.S., as well as likely a state technology

Leave a Reply Cancel reply

Salt Typhoon Leverages Citrix Vulnerability in Cyber Intrusion on European Telecom Provider October 22, 2025
Salt Typhoon, a China-linked espionage group, has once again surfaced, this time in the systems of a European telecommunications provider. Darktrace spotted the signs early: a faint digital pulse of DLL sideloading, a whisper of Citrix exploitation, the careful footsteps of an adversary that knows how to stay unseen. Salt Typhoon is no newcomer. Active […]
Kirsten Doyle
Ransomware Attack on Askul Ripples Across Japan’s Retail Sector October 22, 2025
Late Sunday, Japanese retailer Muji confirmed that “logistics failures” had disrupted its online store and subscription services. It happened because its logistics partner, Askul, was taken offline by a ransomware attack. Askul, a major player in Japan’s e-commerce and logistics space, said the infection triggered a systemwide outage. Orders, shipments, and even customer service functions […]
Kirsten Doyle
How Ransomware Contributes to Rising Healthcare Costs October 22, 2025
Healthcare costs have been on the rise in recent years. Factors such as increased tariffs, a lack of medical professionals, and an increasingly elderly population contribute to this. Another prominent cause is the rise in ransomware attacks and subsequent costs for healthcare organizations and their consumers. Explore how these threats are adding to the already […]
Zac Amos
From Artificial to Authentic: Solving the AI Trust Problem October 21, 2025
Over 75% of organizations participating in McKinsey’s 2025 State of AI survey report using AI in at least one business function. However, concerns about AI-related risks still exist. The most common concern is the risk of inaccuracy or the inability to trust AI outputs. Reviewing AI model outputs is crucial for increasing confidence, allowing you […]
Irfahn Khimji
Envoy Air Confirms Cyberattack Linked to Clop Ransomware Group October 21, 2025
Envoy Air, a regional carrier owned by American Airlines, has confirmed it was the target of a sophisticated ransomware attack attributed to the Clop cybercrime group. The breach, which happened in August 2025, exploited a zero-day vulnerability in Oracle’s E-Business Suite, one of the most severe flaws to hit enterprise software this year. Clop, which […]
Kirsten Doyle
International Cybercrime Network Dismantled in Latvia October 21, 2025
An international law enforcement operation in Latvia has brought down a major cybercrime-as-a-service network. Seven suspects were arrested, most of them Latvian nationals. The coordinated action, codenamed SIMCARTEL, took place on 10 October. Police from Latvia, Austria, and Estonia worked alongside Europol and Eurojust. Investigators say the group was behind thousands of scams across Europe, […]
Kirsten Doyle
Cybersecurity Awareness Month 2025: Stay Safe Online October 17, 2025
The internet cannot be separated from modern life. It’s a shared utility that connects, informs, and empowers us. But the more we rely on it, the greater the risks become. Every click, login, or search leaves a trail, and each device, app, or interaction can open the door (sometimes obvious, often unseen) to data breaches, identity theft, […]
Kirsten Doyle
Google’s New ‘Phone a Friend’ Feature Could Save Your Account, But Raises Privacy Questions October 17, 2025
Getting locked out of your Google account is more than an annoyance, it can be a major headache. You can lose hours in endless recovery loops, and still end up nowhere. Now, Google says it’s found a simpler fix: you can call a friend for help. As CNET reports, Google’s new Recovery Contacts feature lets you nominate a trusted […]
Kirsten Doyle
Sotheby’s Confirms Data Breach, Client Information Exposed October 17, 2025
Sotheby’s has confirmed a data breach following unauthorized access to its internal systems, exposing sensitive personal information belonging to clients. The breach happened on 24 July 2025, and was discovered two months later, on 24 September. An investigation led by external forensic specialists found that an unknown actor had exfiltrated internal data. The review process, downloading, cataloging, and analyzing the […]
Kirsten Doyle
When Culture Clicks the Wrong Link: Re-thinking the Human Factor in Cybersecurity October 15, 2025
When it comes to cyber-related crimes such as data breaches and deepfakes, none of us must look very far for a story that hits close to home. But there’s a problem with this. We tend to look at ourselves, searching for the mistakes we made, the phishing link we clicked on, or the deepfake we […]
Steve Prentice

Chinese Threat Actors Exploit ToolShell SharePoint Flaw Weeks After Microsoft’s July Patch

Bridging the Remediation Gap: Introducing Pentera Resolve

Iran-Linked MuddyWater Targets 100+ Organisations in Global Espionage Campaign

Leave a Reply Cancel reply

[email protected]

Chinese Threat Actors Exploit ToolShell SharePoint Flaw Weeks After Microsoft’s July Patch

Chinese Threat Actors Exploit ToolShell SharePoint Flaw Weeks After Microsoft’s July Patch

Share :

Leave a Reply Cancel reply