A top security researcher claims the massive SharePoint zero-day attack was fueled by a leak from a Microsoft partner program ...

Threat actors exploit SharePoint flaws to access internal systems, steal sensitive data, and carry out surveillance, ...

Microsoft is investigating whether a leak from its early alert system for cybersecurity companies allowed Chinese hackers to ...

Microsoft has confirmed that vulnerabilities in its on-premises SharePoint Server installations, a network spoofing vulnerability (CVE-202549706), ...

It's not just data theft. A China-based hacking group is using a flaw in vulnerable SharePoint servers to deliver ransomware, ...

Multiple hacking groups—including state actors from China—have targeted a vulnerability in older, on-premises versions of the ...

The active exploitation of a zero-day vulnerability in Microsoft SharePoint has led to a sweeping cyberattack involving over 100 organizations, including the U.S. National Nuclear Security ...

This Alert was updated to reflect newly released information from Microsoft, and to correct the actively exploited Common ...

A series of cyber intrusions targeting Microsoft’s SharePoint platform has triggered alarm across global businesses and ...

CISA gave agencies until the end of the day on Monday to mitigate a severe zero-day vulnerability in Microsoft's widely used ...

Google's Mandiant links a China-nexus hacking group to attacks on a critical SharePoint zero-day (CVE-2025-53770), as ...

More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the ...