TZUTC: -0500   
   MSGID: 1368.consprcy@1:2320/105 2d06284b   
   PID: Synchronet 3.21a-Linux master/123f2d28a Jul 12 2025 GCC 12.2.0   
   TID: SBBSecho 3.28-Linux master/123f2d28a Jul 12 2025 GCC 12.2.0   
   BBSID: CAPCITY2   
   CHRS: ASCII 1   
   FORMAT: flowed   
   Canada's House of Commons hit by cyberattack, data possibly leaked online -   
   could Microsoft SharePoint be to blame?   
      
   Date:   
   Fri, 15 Aug 2025 14:20:00 +0000   
      
   Description:   
   The Canadian government body is investigating a breach and data theft.   
      
   FULL STORY   
      
   Canadas House of Commons has reportedly suffered a cyberattack which saw it   
   lose sensitive employee data.    
      
   A CBC report, citing an internal email that the organization sent to its   
   staff, says the attack saw an unidentified threat actor exploit a recent   
   Microsoft vulnerability to access a database with information on employee   
   computers and mobile devices.    
      
   Among the data stolen in the attack was employee names, email addresses, job   
   titles, office locations, and information about the devices they use.   
      
   SharePoint under the magnifying glass    
      
   At the moment, both the House of Commons and Canadas Communications Security   
   Establishment (CSE) are investigating the issue.    
      
   "Attribution of a cyber incident is difficult. Investigating cyber threat   
   activity takes resources and time, and there are many considerations involved   
   in the process of attributing malicious cyber activity," CSE apparently said   
   in a statement.    
      
   The organization told its employees to remain vigilant, and be wary of   
   incoming communications.    
      
   The details are scarce, but the House of Commons saying the attackers used a   
   recent Microsoft vulnerability fueled speculation that it was done through an   
   infamous SharePoint flaw which has been exploited recently.    
      
   Canadas Cyber Centre recently issued a warning about a SharePoint Server flaw   
   called ToolShell, tracked as CVE-2025-53770.    
      
   ToolShell was first observed in late July 2025, and has been abused by   
   multiple threat actors, including Chinese state-sponsored groups .    
      
   Multiple high-profile organizations have already been compromised this way,   
   including the US National Nuclear Security Administration, Rhode Island   
   General Assembly, and many others.    
      
    Via BleepingComputer   
      
   ======================================================================   
   Link to news story:   
   https://www.techradar.com/pro/security/canadas-house-of-commons-hit-by-cyberat   
   tack-data-possibly-leaked-online-could-microsoft-sharepoint-be-to-blame   
      
   $$   
   --- SBBSecho 3.28-Linux   
    * Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)   
   SEEN-BY: 105/81 106/201 128/187 129/14 305 153/7715 154/110 218/700   
   SEEN-BY: 226/30 227/114 229/110 111 114 206 300 307 317 400 426 428   
   SEEN-BY: 229/470 664 700 705 266/512 291/111 320/219 322/757 342/200   
   SEEN-BY: 396/45 460/58 712/848 902/26 2320/0 105 304 3634/12 5075/35   
   PATH: 2320/105 229/426