More information has emerged on the ToolShell SharePoint zero-day attacks, including impact, victims, and threat actors.

ESET Research has been monitoring intense attacks involving the recently discovered ToolShell zero-day vulnerabilities.

A China-based hacking group is deploying Warlock ransomware on Microsoft SharePoint servers vulnerable to widespread attacks ...

Microsoft’s security analysts confirm that a number of cyber attacks on on-premise SharePoint Server users involve ransomware.

The attacks appear to have escalated because Microsoft released incomplete patches for the initial vulnerabilities, according ...

Cybersecurity experts were concerned that the ToolShell vulnerability in Microsoft SharePoint servers could get worse than it ...

A July 8 fix for a critical SharePoint zero-day failed to stop active exploitation, enabling state-backed attackers to breach ...

Microsoft has pointed the finger at three Chinese nation-state actors for exploiting the SharePoint vulnerabilities, accusing one group of carrying out ransomware attacks. Here's what we know about ...

Microsoft said Chinese actor Storm-2603 is deploying Warlock ransomware following the exploitation of vulnerabilities in ...

A China-linked threat actor has been observed exploiting SharePoint servers to deliver ransomware, according to Microsoft ...

Microsoft has issued a stark warning about a recent cyberattack targeting critical infrastructure, including the U.S.