Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

3 headlines in this view

Refine the feed

Search across headline titles and summaries.

Volume over time

Weekly headline count for the current query.

Showing 3 most recent headlines Filtered view

Hackers believed to be associated with China have leveraged the ToolShell vulnerability (CVE-2025-53770) in Microsoft SharePoint in attacks targeting government agencies, universities, telecommunication service providers, and finance organizations. [...]

Bleeping Computer 22 Oct 2025, 11:24 p.m. Actively exploited CVE-2025-53770 CVE China Finance Government Microsoft Service Provider Vulnerability

Microsoft has released emergency SharePoint security updates for two zero-day vulnerabilities tracked as CVE-2025-53770 and CVE-2025-53771 that have compromised services worldwide in "ToolShell" attacks. [...]

Bleeping Computer 21 Jul 2025, 4:41 p.m. Actively exploited CVE-2025-53770 CVE-2025-53771 0-Day CVE Compromise Flaw Microsoft Patch Remote Code Execution Vulnerability

A critical zero-day vulnerability in Microsoft SharePoint, tracked as CVE-2025-53770, has been actively exploited since at least July 18th, with no patch available and at least 85 servers already compromised worldwide. [...]

Bleeping Computer 21 Jul 2025, 3:40 a.m. Actively exploited CVE-2025-53770 0-Day CVE Compromise Critical Microsoft Patch Remote Code Execution Vulnerability