Weekly Cybersecurity Recap : Sharepoint 0-day, Vmware Exploitation, Threats and Cyber Attacks

This cybersecurity recap by cybersecurity experts covers critical digital threats and vulnerabilities from July 21-27, 2025, highlighting major security incidents affecting organizations worldwide.

The week revealed alarming security breaches including a SharePoint zero-day attack on the US Nuclear Security Administration, ransomware destroying a 158-year-old logistics company through weak passwords, and Chinese APT41 hackers targeting African government systems. Multiple threat actors deployed sophisticated malware campaigns using fake software and social engineering tactics to compromise enterprise networks.

• SharePoint zero-day vulnerability (CVE-2025-53770) exploited by Storm-2603 group affected over 400 organizations with ransomware attacks
• DeerStealer malware spread through fake Google Authenticator sites targeting crypto wallets and browser credentials
• UNC3944 group exploited VMware vSphere environments for ransomware deployment using social engineering techniques
• Critical vulnerabilities discovered in Cisco ISE, Chrome V8 engine, and SonicWall SMA devices requiring immediate patching