A top security researcher claims the massive SharePoint zero-day attack was fueled by a leak from a Microsoft partner program ...

Chinese-linked hackers breached several U.S. government agencies, including the Department of Homeland Security and the Department of Health and Human Services, by exploiting a vulnerability in ...

Microsoft has confirmed that vulnerabilities in its on-premises SharePoint Server installations, a network spoofing vulnerability (CVE-202549706), ...

Department of Homeland Security headquarters, several of its agencies and the Department of Health and Human Services have ...

It's not just data theft. A China-based hacking group is using a flaw in vulnerable SharePoint servers to deliver ransomware, ...

Hackers are actively exploiting a critical SharePoint zero-day (CVE-2025-53770), hitting 400+ firms and institutions like the ...

More information has emerged on the ToolShell SharePoint zero-day attacks, including impact, victims, and threat actors.

The company says several Chinese state-aligned groups have exploited the zero-day vulnerability disclosed on Saturday.

The zero-day vulnerability — which was first disclosed late Saturday — has been exploited by several Chinese state-aligned ...

This Alert was updated to reflect newly released information from Microsoft, and to correct the actively exploited Common ...

Microsoft has accused Chinese state-sponsored groups of exploiting its SharePoint document management software to target ...