More information has emerged on the ToolShell SharePoint zero-day attacks, including impact, victims, and threat actors.

South Africa’s National Treasury on Wednesday said it’s seeking help from Microsoft after identifying malware on its network.

Hackers reportedly breached hundreds of government agencies and companies around the world by exploiting a vulnerability in Microsoft’s SharePoint server software.

Microsoft has confirmed that multiple China-based threat actors have exploited critical vulnerabilities in its on-premises SharePoint Server software, breaching the defences of hundreds of ...

A cyber-espionage campaign centered on vulnerable versions of Microsoft's server software now involves the deployment of ransomware, Microsoft said in a late Wednesday blog post. In the post, citing ...

A massive Microsoft SharePoint vulnerability has reportedly exposed over 400 organizations—including the U.S. nuclear ...

Microsoft has observed two named Chinese nation-state actors, Linen Typhoon and Violet Typhoon, exploiting vulnerabilities ...

The number of companies and organizations compromised by a security vulnerability in Microsoft Corp.’s SharePoint servers is increasing rapidly, with the tally of victims soaring more than six-fold in ...

Officials in Indiana and Missouri said technologists remain watchful, but their states so far seem to have avoided compromise. The latter’s Office of Administration credited a layered security ...

Microsoft has just disclosed a serious vulnerability in SharePoint (CVE-2025-53770) that allows unauthenticated attackers to remotely execute code ...

The company says several Chinese state-aligned groups have exploited the zero-day vulnerability disclosed on Saturday.

Victims of the recent global hacking campaign include the National Institutes of Health and the National Nuclear Security ...