Incident Overview Between July 17 and July 23, 2025, organizations worldwide began facing active exploitation of a critical zero-day vulnerability in Microsoft SharePoint on-premises environments. The flaw, now internally referred to as “ToolShell”, quickly drew attention from Microsoft, major cybersecurity vendors, and government security agencies due to its scale and severity. Unlike many past vulnerabilities […]
