Menu

Filter by
content
PONT Data&Privacy
  • PONT home
    • mill

    0

    Information Security
    Informatiebeveiliging betreft het treffen van maatregelen om de beschikbaarheid, exclusiviteit en integriteit van alle vormen van informatie binnen een organisatie of een maatschappij te waarborgen en de eventuele gevolgen van incidenten te beperken tot een acceptabel, vooraf bepaald niveau.

    NCSC: Serious Microsoft SharePoint Server vulnerability actively exploited by hackers

    The NCSC has issued an alert for Microsoft SharePoint Server. A security vulnerability allows malicious parties to execute unauthorized code.

    Information Security Netherlands July 21, 2025

    News press release

    News press release

    Microsoft has now made information available about the actively exploited Zero Day vulnerability in on-premises Microsoft SharePoint Server. SharePoint Online (Microsoft 365) has not been compromised.

    New vulnerability

    Recently, the Prosecutor's Office was in the news because of a security vulnerability in Citrix NetScaler ADC and Gateway. The NCSC points out that these are different vulnerabilities that are not interconnected.

    Also in the Netherlands

    According to US newspaper The Washington Post, US federal agencies, universities, energy companies and an Asian telecom company have been hacked. According to security firm Censys, more than 10,000 companies with SharePoint servers are at risk. The United States has the most companies with these servers, followed by the Netherlands.

    Security update

    Microsoft has made available a new security update "to counter active attacks on local servers." The NCSC strongly recommends that organizations install these security updates as soon as possible. Microsoft has published guidance on how to do this.

    Click here for Microsoft's advice.

    Click here for the NCSC's message.

    Share article

    Comments

    MORE REACTIONS

    Leave a comment

    You must be logged in to post a comment.

    NEWS

    Dutch providers targeted by Salt Typhoon

    News press release

    Criminal investigation into theft of personal data

    News press release

    NIS2: risk analysis of own organization helps get a grip on supplier management

    Blog

    Tips on secondary victimization of data theft

    News press release

    How can you mitigate the impact of data theft? Collaborative Melissa has published best practices (advice and measures) for organizations facing them.

    NCSC publishes GitHub checkscripts for Citrix systems

    News press release
    Information Security Netherlands

    The Cybersecurity Act: new legal foundation for digital resilience

    Blog

    Netherlands late with NIS2 implementation: law unlikely to take effect until spring 2026

    News press release

    Nearly one in three ransomware victims hit multiple times

    News press release

    Stricter security requirements for wireless devices starting Aug. 1, 2025

    News press release
    State Digital Infrastructure Inspection

    KENNISPARTNER

    Robert van Vianen

    Contact

    Data breaches: preparing, recognizing and responding

    During this course, the current state of affairs regarding the mandatory data breach notification will be covered. What exactly qualifies a data breach and what legal obligations apply with respect to a data breach? The additional obligations that follow from the policy rules of the regulators and the practice around reporting a data breach to the Personal Data Authority will also be discussed. In addition, other relevant factors, such as reporting, how to speak to the press and the options for preparing for a data breach will be discussed in detail during this course.

    Learn more

    Join PONT | Data & Privacy

  • Access to Knowledge Base
  • Read e-books
  • Contact with peers
  • Own news overview
    • BECOME A MEMBER

    General

    Service

    Navigate

    Berghauser Pont Media Group

    CONTACT

    𝕏

    Copyright 2025 Berghauser Pont | Website created by Buro Zero