If exploited, attackers can gain full access to SharePoint content and potentially pivot to Outlook, Teams, and OneDrive.

Microsoft says the Chinese threat actors Linen Typhoon, Violet Typhoon, and Storm-2603 have been exploiting the ToolShell ...

Hackers with ties to the Chinese government have been linked to a recent wave of widespread attacks targeting a Microsoft ...

The name was coined by Dinh Ho Anh, a researcher from Khoa of Viettel Cyber Security, who developed the exploit. The ...

A China-based hacking group is deploying Warlock ransomware on Microsoft SharePoint servers vulnerable to widespread attacks ...

ESET Research has been monitoring intense attacks involving the recently discovered ToolShell zero-day vulnerabilities.

Microsoft has started releasing updates to fix the exploited SharePoint zero-days tracked as CVE-2025-53770 and CVE-2025-53771.

A China-linked threat actor has been observed exploiting SharePoint servers to deliver ransomware, according to Microsoft ...

Microsoft’s security analysts confirm that a number of cyber attacks on on-premise SharePoint Server users involve ransomware.

Microsoft released a patch Monday for SharePoint Server 2016 that protects customers against a pair of vulnerabilities, which ...

A security patch released by Microsoft last month failed to fully fix a critical flaw in U.S. tech giant's SharePoint server ...

Global attacks forced Microsoft to push emergency updates to address vulnerabilities. Two zero-day vulnerabilities are at the center of attacks against United States federal and state agencies, ...