On July 20, 2025, Microsoft and the Cybersecurity and Infrastructure Security Agency (CISA) issued urgent warnings about new, actively ...

While organizations may have a variety of reasons for sticking with on-premises Microsoft SharePoint servers, widespread attacks targeting the servers are grounds to “re-do their risk calculus” and ...

Microsoft blamed two Chinese nation-state actors for exploiting recently discovered security flaws in SharePoint to ...

Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code ...

New estimates regarding the recently-exploited Microsoft SharePoint vulnerabilities now evaluate that as many as 400 ...

Microsoft has confirmed that vulnerabilities in its on-premises SharePoint Server installations, a network spoofing vulnerability (CVE-202549706), ...

In yet another alarming example of government systems falling prey to cyber threats, the National Nuclear Security ...

Microsoft confirms Chinese hackers exploited a SharePoint flaw; Patches now available. Cloud-based Microsoft 365 not affected ...

A China-linked threat actor has been observed exploiting SharePoint servers to deliver ransomware, according to Microsoft ...

A widespread Microsoft SharePoint vulnerability has triggered cyberattacks impacting over 400 organizations globally, with ...

Microsoft said Chinese actor Storm-2603 is deploying Warlock ransomware following the exploitation of vulnerabilities in ...