On July 19, Microsoft issued a security alert warning organizations of active cyberattacks exploiting vulnerabilities in on-premises SharePoint servers. These attacks do not impact SharePoint Online within Microsoft 365, the company confirmed.
Security updates have been released for SharePoint Subscription Edition and SharePoint Server 2019 to help protect against the threat.
According to the Cybersecurity and Infrastructure Security Agency (CISA), the attacks involve a vulnerability chain known as “ToolShell,” which allows unauthenticated attackers to gain access to SharePoint environments. This access can enable malicious actors to view internal file systems, change configurations, and execute code remotely.
The full scope and impact of the attacks are still under investigation. Organizations using on-premises SharePoint are urged to apply the latest security patches immediately.
To read more, click here.
