Multiple hacking groups—including state actors from China—have targeted a vulnerability in older, on-premises versions of the file-sharing tool after a flawed attempt to patch it.

Hackers are now using AI to scale attacks, exploit vulnerabilities more quickly and create deceptive content that’s nearly undetectable with traditional defenses.

The hackers behind the initial wave of attacks exploiting a zero-day in Microsoft SharePoint servers have so far primarily targeted government organizations, according to researchers and news reports.

Newly published research shows that the domain name system—a fundamental part of the web—can be exploited to hide malicious code and prompt injection attacks against chatbots.

One password is believed to have been all it took for a ransomware gang to destroy a 158-year-old company and put 700 people out of work. KNP - a Northamptonshire transport company - is just one of tens of thousands of UK businesses that have been hit by such attacks.

Arizona officials have “moderate confidence” that the Iranian government or affiliates breached the state’s candidate web portal.

Bleach maker Clorox said Tuesday that it has sued information technology provider Cognizant over a devastating 2023 cyberattack, alleging the hackers gained access by asking the tech company's staff for its employees' passwords.

Cybercriminals have found a way to leverage stolen company files to obtain actual physical goods, and it revolves around a business practice called Request for Quote (RFQ).