Curated Security Advisory (31 Mar 2022)

The newly exploited SharePoint zero‑day pair—CVE‑2025‑53770 and CVE‑2025‑53771, collectively nicknamed “ToolShell”—allows attackers to plant a web shell, steal cryptographic machine‑keys, and maintain persistent remote‑code execution even after routine patching.

Two interconnected Linux vulnerabilities discovered by Scantist AI's security research team have created one of the most dangerous privilege escalation pathways in recent years.

Scantist is proud to share that we have officially achieved ISO/IEC 27001:2022 certification. This accomplishment marks a major milestone in our commitment to information security, data protection, and operational excellence.