SharePoint “ToolShell" Zero‑Day and Software Supply Chain Risk
The newly exploited SharePoint zero‑day pair—CVE‑2025‑53770 and CVE‑2025‑53771, collectively nicknamed “ToolShell”—allows attackers to plant a web shell, steal cryptographic machine‑keys, and maintain persistent remote‑code execution even after routine patching.