Ransomware has officially entered the Microsoft SharePoint exploitation ring. Late Wednesday, in an update to its earlier ...

A July 8 fix for a critical SharePoint zero-day failed to stop active exploitation, enabling state-backed attackers to breach ...

Storm-2603 exploits SharePoint flaws to deploy Warlock ransomware, affecting 400+ victims. Microsoft urges mitigation.

In mid‑July 2025, a devastating cyber‑espionage campaign was launched against on‑premises Microsoft SharePoint servers—widely used by businesses, governments, ...

In a blog post Tuesday, Microsoft said it observed hackers attempting to “gain initial access to target organizations.” ...

Two of the crews behind the zero-day attacks are government-backed: Linen Typhoon (aka Emissary Panda, APT27) and Violet Typhoon (aka Zirconium, Judgment Panda, APT31), Microsoft's threat intel team ...

Microsoft links SharePoint attacks to three China-based groups; flaws allow code execution and data theft on unpatched ...

Chinese state‑linked hackers have now been confirmed as the driving force behind the “ToolShell” attacks that are ripping ...

The Czech Republic's government has officially linked a malicious cyberattack on its Ministry of Foreign Affairs to a hacker group associated with China, known as APT31.

As stated in a release from the Czech Ministry of Foreign Affairs, this attack, which has focused on unclassified networks and critical infrastructure since 2022, has connections to Chinas ...

The Czech Republic on Wednesday summoned China's ambassador over a cyberattack targeting Prague's foreign ministry as the EU and Washington condemned the attack and NATO warned of a growing threat.