CVE-2025-53770: Frequently Asked Questions About Zero-Day SharePoint Vulnerability Exploitation Successful exploitation of CVE-2025-53770 could expose MachineKey configuration details from a vulnerable SharePoint Server, ultimately enabling unauthenticated remote code execution.

Successful exploitation of CVE-2025-53770 could expose #MachineKey configuration details from a vulnerable SharePoint Server, ultimately enabling unauthenticated remote code execution.

Read the recap from Tenable Research Special Operations: spr.ly/63325fJzsd

Gold Melody sfrutta Machine Keys ASP.NET per attacchi fileless su IIS: analisi tecnica e raccomandazioni di difesa.

#NET #GodPotato #GoldMelody #iis #InitialAccessBroker #MachineKey #privilegeescalation #ProphetSpider #UNC961 #ViewState
www.matricedigitale.it/2025/07/10/i...

Microsoft says attackers use exposed ASP.NET keys to deploy malware Microsoft warns that attackers are deploying malware in ViewState code injection attacks using static ASP. NET machine keys found online.

マイクロソフトは、攻撃者が公開されたASP.NETキーを使用してマルウェアを展開すると述べている

Microsoft says attackers use exposed ASPNET keys to deploy malware #BleepingComputer (Feb 6)

#ASP.NET #machineKey #ViewState #コードインジェクション #マルウェア