Chinese Threat Actors Exploit ToolShell SharePoint Flaw Weeks After Microsoft's July Patch

Threat actors with ties to China exploited the ToolShell security vulnerability in Microsoft SharePoint to breach a telecommunications company in the Middle East after it was publicly disclosed and patched in July 2025. Also targeted were government departments in an African country, as well as...

Malicious code in test-mlw2-metes-linen (npm)

The package test-mlw2-metes-linen was found to contain malicious code...

MAL-2025-35770 Malicious code in test-mlw2-metes-linen (npm)

The package test-mlw2-metes-linen was found to contain malicious code...

Microsoft Links Ongoing SharePoint Exploits to Three Chinese Hacker Groups

Microsoft has formally tied the exploitation of security flaws in internet-facing SharePoint Server instances to two Chinese hacking groups called Linen Typhoon and Violet Typhoon as early as July 7, 2025, corroborating earlier reports. The tech giant said it also observed a third China-based...

Disrupting active exploitation of on-premises SharePoint vulnerabilities

July 23, 2025 update – Expanded analysis and threat intelligence from our continued monitoring of exploitation activity by Storm-2603 leading to the deployment of Warlock ransomware. Based on new information, we have updated the Attribution, Indicators of compromise, extended and clarified...

CVE-2024-45522

Linen before cd37c3e does not verify that the domain is linen.dev or www.linen.dev when resetting a password. This occurs in create in apps/web/pages/api/forgot-password/index.ts...

CVE-2024-45522

Linen before cd37c3e does not verify that the domain is linen.dev or www.linen.dev when resetting a password. This occurs in create in apps/web/pages/api/forgot-password/index.ts...

Linen 安全漏洞

Linen is a community-based, lightweight Google searchable Slack alternative to Linen open source. A security vulnerability exists in versions prior to Linen cd37c3e that stems from improper domain validation when resetting passwords...

CVE-2024-45522

CVE-2024-45522 affects Linen ( Linen.dev ) with an improper domain validation in the forgot-password flow. The issue occurs in the endpoint at apps/web/pages/api/forgot-password/index.ts, where the domain is not verified against linen.dev or www.linen.dev during password resets, potentially enabl...

CVE-2024-45522

Linen before cd37c3e does not verify that the domain is linen.dev or www.linen.dev when resetting a password. This occurs in create in apps/web/pages/api/forgot-password/index.ts...

linenforhire.co.uk Cross Site Scripting vulnerability OBB-2790633

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...