Easy to exploit. Unauthenticated access. Massive reach. ToolShell has it all.
[[{“value”:”
Government agencies and private industry have been under siege over the past four days following the discovery that a critical vulnerability in SharePoint, the widely used document-sharing app made by Microsoft, is under mass exploitation. Since that revelation, the fallout and the ever-increasing scope of the attacks have been hard to keep track of.
What follows are answers to some of the most common questions about the vulnerability and the ongoing exploitation of it, which collectively is being called ToolShell by people tracking the activity.
What’s known so far
Question: What’s SharePoint?
“}]]
