People Are Still Using SharePoint

Dan Goodin, writing for Ars Technica:

Authorities and researchers are sounding the alarm over the active mass exploitation of a high-severity vulnerability in Microsoft SharePoint Server that’s allowing attackers to make off with sensitive company data, including authentication tokens used to access systems inside networks. Researchers said anyone running an on-premises instance of SharePoint should assume their networks are breached.

The vulnerability, tracked as CVE-2025–53770, carries a severity rating of 9.8 out of a possible 10. It gives unauthenticated remote access to SharePoint Servers exposed to the Internet.

I worked on a few SharePoint projects in the early 2000s, and even back then it felt old and outdated. I was shocked that anyone would choose to use it for any purpose. And yet, here we are in 2025, and I have the same reaction anytime I see the word SharePoint crop up.