The U.S. government is investigating yet another significant cybersecurity breach after hackers infiltrated a key Department ...
CISA added CVE-2026-45659 SharePoint Server RCE to KEV following confirmed exploitation, requiring U.S. agencies to patch by ...
CISA warned on Wednesday that attackers have begun exploiting a high-severity Microsoft SharePoint remote code execution ...
Microsoft's prediction that attackers probably wouldn't rush to exploit a newly-patched SharePoint bug hasn't aged especially ...
CISA added a Microsoft SharePoint RCE flaw to its exploited bugs catalog after confirming active attacks on unpatched servers ...
CISA warns that attackers are exploiting Microsoft SharePoint vulnerability CVE-2026-45659, a high-severity remote code ...
Separate actors exploited the same exposure, creating overlapping intrusions that obscured detection and response.
Last Tuesday, Microsoft patched a vulnerability it rated as max critical in its M365 Copilot AI platform. On Monday, the researchers who discovered the vulnerability and reported it to Microsoft ...
A security analyst at a large enterprise recently found sensitive HR documents being copied into a Microsoft Teams channel ...
EvilTokens, the device-code phishing kit that can allow criminals to bypass multi-factor authentication (MFA) and silently authenticate as the victim to the organization's Microsoft 365 applications, ...
This sneaky attack tricks Microsoft's AI assistant to hand over your data.
Microsoft patched SearchLeak: a critical vulnerability in M365 Copilot that could expose 2FA codes and private data with one click. Here's what happened.