ToolShell Remote Code Execution in Microsoft SharePoint: CVE-2025-53770 & CVE-2025-53771
Staff Security Researcher
Microsoft revealed two critical vulnerabilities, CVE-2025-53771 and CVE-2025-53770, actively exploited to compromise SharePoint servers.

Staying Secure in 2025
All blog posts
-
ToolShell Remote Code Execution in Microsoft SharePoint: CVE-2025-53770 & CVE-2025-53771
Simran Khalsa, Matthew Mathur, + 1 more
Microsoft revealed two critical vulnerabilities, CVE-2025-53771 and CVE-2025-53770, actively exploited to compromise SharePoint servers.
Security -
DDoS in June
Liam Mayron, David King
June’s DDoS report reveals a 250B+ request attack on a High Tech provider and the rise of the Byline Banshee. Get key insights & actionable guidance.
SecurityIndustry insights -
How Apps Can Respect Privacy While Still Getting Personal
Shane Burgess
Learn how apps can offer personalized experiences without compromising user privacy. Solutions like Private Access Tokens, OHTTP, and MASQUE Relay protect data without harming user experience.
Privacy -
Taking Back Control: How Publishers Can Push Back on Unwanted AI Scraping
John Agger
Take control of AI scraping. Learn how publishers can push back against unwanted data harvesting with Fastly's AI Bot Management & new monetization opportunities.
Security+ 2 more -
Unlock Faster Web Performance: The Data Behind Fastly's Edge Over Akamai
Lucas Olslund
Discover why migrating from Akamai to Fastly boosts web performance. Our data shows 57% faster TTFB & 17% faster LCP, based on real-world CrUX data.
CDN & DeliveryPerformance -
Fastly DDoS Protection: Customer-Validated Defense
David King
Discover why Fastly's DDoS Protection is the most frequently reviewed solution on Gartner Peer Insights™. See how customer feedback drives our innovation and performance.
Security+ 2 more -
Fastly’s Edge Network: Building for Availability
Brian Haberman
Learn how Fastly's resilient edge network architecture ensures availability during major internet outages, minimizing impact on customer traffic.
PlatformEdge network -
Securing Your Code Against OS Command Injection
Fastly Security Research Team, Matthew Mathur
What is an OS Command Injection? In this blog, we'll explore the web application vulnerability, OS Command Injection, and how to prevent it.
Security -
Why Simplicity Is Good for Security
Liam Mayron
Security shouldn’t be complex. Discover why Fastly’s one-click DDoS tools like Precise Defense make staying protected easier, faster, and more effective, even under pressure.
Security -
Tailoring Automated DDoS Protection
Liam Mayron, David King
Fine-tune your DDoS protection with Fastly's Precise Defense update. Gain flexibility to allow legitimate traffic while automatically mitigating attacks.
ProductSecurity -
Free Egress and Operations with Object Storage Changes Everything for Image Optimization
James Sherry
Unlock cost-effective image optimization with Fastly Object Storage. Zero egress & operations fees for superior performance. Scale freely & iterate rapidly.
-
Fastly AppSec Survey: AI & Security in 2025
David King, Natalie Lightner
Explore Fastly's 2025 AppSec survey on AI's impact, budget shifts, and security trends amidst economic changes. Get key insights now!
SecurityIndustry insights -
Edge vs Cloud: Where Should AI Live?
Simon Wistow
In this article, Simon Wistow shares why hybrid AI is gaining ground and how semantic caching unlocks better performance and sustainability.
-
How to Control and Monetize AI Bot Traffic Using Fastly and TollBit
David King, Lorraine Bellon
Monetize AI bot traffic! Fastly's Bot Management and TollBit have teamed up to offer granular control, performance, and flexibility to manage bots & unlock new revenue.
Security+ 2 more -
Can We Make AI Green? Big AI Sustainability Questions, Answered by Fastly’s Co-Founder
Alina Lehtinen-Vela
Can AI be green? Fastly’s Simon Wistow tackles big questions on AI sustainability, backed by original data from our 2025 AI Energy Pulse Check survey.
CDN & Delivery+ 2 more -
AI Energy Pulse Check 2025: Insights from Nearly 500 Experts
Alina Lehtinen-Vela
Fastly’s 2025 AI Pulse Check reveals how sustainability and infrastructure leaders are tracking AI energy use, cutting redundant queries, and navigating the edge vs cloud debate.
Industry insights -
Getting Started with TypeScript on Fastly Compute
Katsuyuki Omuro
Getting started with TypeScript on Fastly Compute is simple! Learn how to add static typing to your JavaScript projects for robust development.
Compute+ 3 more -
Replacing Client-side JavaScript SDKs with WebAssembly Components at the Edge
Alex Casalboni, Terri Allegretto
Edgee and Fastly team up to replace client-side JavaScript SDKs with WebAssembly at the edge, improving performance, security, and data collection.
Customers+ 4 more -
Fastly Achieves "Deployed on AWS" Status
Chris Ritter
Fastly earns "Deployed on AWS" status, enhancing procurement and savings for AWS Marketplace users. Explore our cloud-optimized CDN and security solutions today.
CDN & Delivery+ 3 more -
DDoS in May
Liam Mayron, David King
DDoS May 2025 report: 2 new attacks every minute. Get key insights, traffic trends, and actionable security guidance.
Security