Chinese cybercriminals are taking advantage of a critical vulnerability in Microsoft SharePoint to capture data globally:

The flaw, identified as CVE-2025-53770, possesses a severity rating of 9.8 on a scale of 10. It provides unauthorized remote access to SharePoint Servers that are visible on the Internet. Beginning this past Friday, experts started alerting about active exploitation of this issue, which impacts SharePoint Servers utilized by infrastructure clients internally. Microsoft’s cloud-based SharePoint Online and Microsoft 365 remain unaffected.

Here’s Microsoft’s guidance on patching procedures. Simply applying patches is inadequate, as attackers have leveraged the vulnerability to pilfer authentication credentials. It’s a complete disaster. CISA offers further details. Also these four links. Two Slashdot threads.

This situation is an escalating security crisis, and quite an extraordinary hacking achievement.