Microsoft says the Chinese threat actors Linen Typhoon, Violet Typhoon, and Storm-2603 have been exploiting the ToolShell ...

Hackers with ties to the Chinese government have been linked to a recent wave of widespread attacks targeting a Microsoft ...

If exploited, attackers can gain full access to SharePoint content and potentially pivot to Outlook, Teams, and OneDrive.

Microsoft has pointed the finger at three Chinese nation-state actors. Here's what we know, plus how to guard against future ...

Microsoft has started releasing updates to fix the exploited SharePoint zero-days tracked as CVE-2025-53770 and CVE-2025-53771.

A security patch Microsoft released this month failed to fully fix a critical flaw in the U.S. tech giant's SharePoint server ...

An ongoing cyberattack campaign known as “ToolShell” is exploiting on-premises Microsoft SharePoint Servers and has ...

Microsoft Corp. (MSFT) shares have displayed an interesting pattern on Stocktwits–the stock has gained over 19% in value ...

While all patches against ‘ToolShell’ exploits are now available for on-premises SharePoint Servers, attackers will be ...

Microsoft said an attack campaign targeting zero-day vulnerabilities in on-premises SharePoint servers appears to have begun ...

The term "zero-day" attack refers to when a previously unknown vulnerability is targeted. Tens of thousands of servers are ...

This Alert was updated to reflect newly released information from Microsoft, and to correct the actively exploited Common Vulnerabilities and Exposures (CVEs), which have been confirmed ...