If exploited, attackers can gain full access to SharePoint content and potentially pivot to Outlook, Teams, and OneDrive.

Hackers with ties to the Chinese government have been linked to a recent wave of widespread attacks targeting a Microsoft ...

More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the ...

CISA flags Microsoft SharePoint flaws under active attack by Chinese hackers. U.S. agencies must patch by July 23 ...

Microsoft has started releasing updates to fix the exploited SharePoint zero-days tracked as CVE-2025-53770 and CVE-2025-53771.

Exploitation of the ToolShell RCE zero-day in Microsoft SharePoint continues to gather pace, with evidence emerging of ...

Microsoft has observed three China-based threat actors, Linen Typhoon, Violet Typhoon and Storm-2603, exploiting the ...

Microsoft is following up and is also releasing a patch for the 2016 edition of Sharepoint. Admins should install this ...

A recent security breach related to Microsoft SharePoint exposes critical vulnerabilities despite a July patch, linking ...

A security patch Microsoft released this month failed to fully fix a critical flaw in the U.S. tech giant's SharePoint server software, opening the door to a sweeping global cyber espionage effort, a ...

A security patch released by Microsoft earlier this month failed to fully fix a critical flaw in the company's SharePoint ...

Microsoft has urgently patched a critical zero-day flaw in SharePoint, exploited by hackers targeting businesses and U.S. government agencies.