A top security researcher claims the massive SharePoint zero-day attack was fueled by a leak from a Microsoft partner program ...

On July 20, 2025, Microsoft and the Cybersecurity and Infrastructure Security Agency (CISA) issued urgent warnings about new, actively ...

Although Microsoft acknowledged the SharePoint problem, the original fix did not prevent hacking. Right now government and ...

Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code ...

Kaspersky’s Global Research and Analysis Team (GReAT) reveals that the recently exploited ToolShell vulnerabilities in Microsoft SharePoint originate from an incomplete fix for CVE-2020-1147, first ...

The ToolShell bugs are being exploited by cybercriminals and APT groups alike, with the US on the receiving end of 13 percent ...

The attacks appear to have escalated because Microsoft released incomplete patches for the initial vulnerabilities, according ...

Microsoft’s security analysts confirm that a number of cyber attacks on on-premise SharePoint Server users involve ransomware ...

A China-linked threat actor has been observed exploiting SharePoint servers to deliver ransomware, according to Microsoft ...

A July 8 fix for a critical SharePoint zero-day failed to stop active exploitation, enabling state-backed attackers to breach ...

Storm-2603 exploits SharePoint flaws to deploy Warlock ransomware, affecting 400+ victims. Microsoft urges mitigation.

Hackers are actively exploiting a critical SharePoint zero-day (CVE-2025-53770), hitting 400+ firms and institutions like the ...