Microsoft Issuing Emergency Patches to Combat Authentication-Bypassing Attacks. Hackers have been exploiting two zero-day vulnerabilities in on-premises installations of Microsoft SharePoint to gain remote access, and steal cryptographic keys and data. As Microsoft rolls out patches against ToolShell, experts warn administrators to also rotate keys, to help eject attackers.
First seen on govinfosecurity.com
Jump to article: www.govinfosecurity.com/attackers-exploit-zero-day-flaws-in-on-premises-sharepoint-a-29018
