Microsoft has pointed the finger at three Chinese nation-state actors for exploiting the SharePoint vulnerabilities. Here's what we know about the security flaws and how to guard against future ...

Active SharePoint exploits since July 7 target governments and tech firms globally, risking key theft and persistent access.

Cybersecurity by AIBooth via Shutterstock. Almost a year to the day after a global Windows outage that rocked companies from ...

Hackers have been exploiting two zero-day vulnerabilities in on-premises installations of Microsoft SharePoint to gain remote ...

The vulnerability, tracked as CVE-2025-53770, carries a severity rating of 9.8 out of a possible 10. It gives unauthenticated ...

Critical zero-day vulnerabilities in Microsoft SharePoint, tracked as CVE-2025-53770 and CVE-2025-53771, have been actively ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), in an alert, said it's aware of active exploitation of ...

A July 8 fix for a critical SharePoint zero-day failed to stop active exploitation, enabling state-backed attackers to breach ...

CISA has mandated immediate mitigation for federal agencies, while analysts urge enterprises to accelerate cloud migration ...

Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code ...

Microsoft has issued an emergency fix to close off a vulnerability in Microsoft’s widely-used SharePoint software that ...