This weekend, Microsoft confirmed that sophisticated threat actors are exploiting a previously unknown (“zero-day”) vulnerability, CVE-2025-53770 (and related CVE-2025-53771), in on-premises SharePoint Server (2016, 2019, Subscription Edition). First unveiled as “ToolShell” during the Pwn2Own Berlin
