Microsoft’s security analysts confirm that a number of cyber attacks on on-premise SharePoint Server users involve ransomware.

A China-linked threat actor has been observed exploiting SharePoint servers to deliver ransomware, according to Microsoft ...

A July 8 fix for a critical SharePoint zero-day failed to stop active exploitation, enabling state-backed attackers to breach ...

Hackers are actively exploiting a critical SharePoint zero-day (CVE-2025-53770), hitting 400+ firms and institutions like the ...

A China-based hacking group is deploying Warlock ransomware on Microsoft SharePoint servers vulnerable to widespread attacks ...

Microsoft has pointed the finger at three Chinese nation-state actors for exploiting the SharePoint vulnerabilities, accusing one group of carrying out ransomware attacks. Here's what we know about ...

ESET Research has been monitoring intense attacks involving the recently discovered ToolShell zero-day vulnerabilities.

More information has emerged on the ToolShell SharePoint zero-day attacks, including impact, victims, and threat actors.

Microsoft warns of active attacks by Chinese hackers exploiting SharePoint flaws CVE-2025-49706 and CVE-2025-49704, urging urgent patching and mitigation steps.

The name was coined by Dinh Ho Anh, a researcher from Khoa of Viettel Cyber Security, who developed the exploit. The ...

Microsoft SharePoint zero-day flaws were exploited to breach over 50 organizations, including the National Nuclear Security ...

Microsoft is facing mounting scrutiny after Chinese state-linked hacking groups exploited a critical flaw in its SharePoint ...