News

China says US spies exploited Microsoft Exchange zero-day to steal military info
China has accused US intelligence agencies of exploiting a Microsoft Exchange zero-day exploit to steal defense-related data ...
Microsoft fixes SharePoint zero-day exploits used in cyberattacks and ransomware - how to patch them
Microsoft has pointed the finger at three Chinese nation-state actors for exploiting the SharePoint vulnerabilities. Here's ...
Microsoft SharePoint zero-day exploited in RCE attacks, no patch available
Critical zero-day vulnerabilities in Microsoft SharePoint, tracked as CVE-2025-53770 and CVE-2025-53771, have been actively ...
New zero-day bug in Microsoft SharePoint under widespread attack
Security researchers say Microsoft customers should take immediate action to defend against the ongoing cyberattacks, and ...
Google, Microsoft warn about zero-day bug in SharePoint
By Ronil Thakkar / KnowTechie Security experts found that Chinese government-backed hackers are exploiting a zero-day ...
Google, Microsoft say Chinese hackers are exploiting SharePoint zero-day
The tech giants have evidence that Chinese hackers are exploiting the new bug, but warned "multiple actors" are also hacking ...
CPO Magazine7d
Microsoft Releases Emergency Updates Amid Active Exploitation of SharePoint Zero-Day Vulnerability Chain
Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code ...
Krebs on Security11d
Microsoft Fix Targets Attacks on SharePoint Zero-Day
Microsoft also has issued a patch for a related SharePoint vulnerability — CVE-2025-53771; Microsoft says there are no signs ...
US intelligence uses Microsoft Exchange zero-day vulnerabilities to attack Chinese military-industrial enterprise's email servers: report
VCG. The Cyber Security Association of China on Friday released two cases regarding the frequent cyberattacks and espionage ...
Microsoft now pays up to $40,000 for some .NET vulnerabilities
Microsoft has expanded its .NET bug bounty program and increased rewards to $40,000 for some .NET and ASP.NET Core ...
CSO Online11d
Microsoft SharePoint zero-day breach hits on-prem servers
CISA has mandated immediate mitigation for federal agencies, while analysts urge enterprises to accelerate cloud migration and implement live threat detection.