If exploited, attackers can gain full access to SharePoint content and potentially pivot to Outlook, Teams, and OneDrive.

Security researchers say Microsoft customers should take immediate action to defend against the ongoing cyberattacks, and ...

Microsoft, in an alert posted Saturday, July 19, said the vulnerability enables an “authorized attacker to perform spoofing ...

Patches have been issued for two versions of Microsoft’s SharePoint software, while one version remains vulnerable.

Microsoft also has issued a patch for a related SharePoint vulnerability — CVE-2025-53771; Microsoft says there are no signs ...

Researchers say Chinese actors, along with other criminal hackers, exploited a security flaw in SharePoint software widely ...

Microsoft is issuing an emergency fix to close off a vulnerability in Microsoft’s SharePoint software that hackers have ...

The patches fix the security holes in more recent versions of SharePoint, but the 2016 version is still at risk.

Hackers have exploited vulnerabilities in Microsoft’s SharePoint software, placing tens of thousands of on-premises servers used by global businesses and agencies at risk. Microsoft issued an alert on ...

Microsoft has released emergency SharePoint security updates for two zero-day vulnerabilities tracked as CVE-2025-53770 and CVE-2025-53771 that have compromised services worldwide in "ToolShell" ...

Microsoft July 19 issued an alert about active attacks from vulnerabilities targeting SharePoint servers used within ...

Microsoft has issued an urgent security alert this weekend after discovering attackers exploiting a critical zero‑day ...