Order byBest matchMost fresh

Microsoft, SharePoint

Digest more
Microsoft fixes three SharePoint zero-day exploits used in series of cyberattacks - how to patch them
Microsoft has patched two critical zero-day SharePoint security flaws that have already been exploited by hackers to attack vulnerable organizations.

Continue reading

CPO Magazine · 1d
Microsoft Releases Emergency Updates Amid Active Exploitation of SharePoint Zero-Day Vulnerability Chain
Google, Microsoft say Chinese hackers are exploiting SharePoint zero-day
How Hackers Targeted Microsoft in Global Cyberattack
Hackers in recent weeks have exploited flaws in SharePoint, a document management system developed by Microsoft Corp., to try to steal sensitive data from hundreds of victims.

Continue reading

Microsoft says China-based hackers exploiting critical SharePoint vulnerabilities to deploy Warlock ransomware — three China-affiliated threat actors seen taking advantage
GCN · 1d
Microsoft acknowledged SharePoint flaw but initial patch failed to stop hacks
Microsoft probing if Chinese hackers learned SharePoint flaws through alert, Bloomberg News reports
A security patch Microsoft released this month failed to fully fix a critical flaw in the U.S. tech giant's SharePoint server software, opening the door to a sweeping global cyber espionage effort.

Continue reading

Hackers attack Microsoft SharePoint, targeting organizations like U.S nuclear security
Microsoft continues investigation of SharePoint cyberattack by Chinese hackers: report
New zero-day bug in Microsoft SharePoint under widespread attack
Security researchers say Microsoft customers should take immediate action to defend against the ongoing cyberattacks, and must assume they have already been compromised.
What to know about a vulnerability being exploited on Microsoft SharePoint servers
Microsoft is issuing an emergency fix to close off a vulnerability in Microsoft’s SharePoint software that hackers have exploited to carry out widespread attacks on businesses and at least some federal agencies.
The Hacker News6d
Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Company Servers
The U.S. Cybersecurity and Infrastructure Security Agency (CISA), in an alert, said it's aware of active exploitation of CVE-2025-53770, which enables unauthenticated access to SharePoint systems and arbitrary code execution over the network.
Hackers exploiting SharePoint zero-day seen targeting government agencies
The hackers behind the initial wave of attacks exploiting a zero-day in Microsoft SharePoint servers have so far primarily targeted government organizations, according to researchers and news reports.
TechCentral2d
SharePoint zero-day attackers now using ransomware
A cyber-espionage campaign centred on vulnerable Microsoft software now involves the deployment of ransomware.
SecurityWeek2d
ToolShell Attacks Hit 400+ SharePoint Servers, US Government Victims Named
More information has emerged on the ToolShell SharePoint zero-day attacks, including impact, victims, and threat actors.
Asianet Newsable on MSN3d
US Nuclear Weapons Agency Reportedly Hit In Microsoft ‘Zero-Day’ Breach — DOE Says Impact Was Minimal
Providing additional updates on the breach, Microsoft said in a blog post on Tuesday that two Chinese nation-state operators, Linen Typhoon and Violet Typhoon, exploited vulnerabilities in the internet-facing SharePoint servers.
Microsoft knew of SharePoint security flaw but failed to effectively patch it, timeline shows
A security patch released by Microsoft earlier this month failed to fully fix a critical flaw in the U.S. tech company's SharePoint server software that had been identified at a hacking competition in May,
Feedback