Ransomware gangs are on the hunt for organizations that have yet to patch their vulnerable Microsoft SharePoint servers. Why ...

Sploitlight turns these plugins into a Transparency, Consent, and Control (TCC) bypass. TCC is a macOS security framework ...

Too many threats, too much data, and too few skilled security analysts are making companies more vulnerable to cyberattacks, ...

In the past week, more victims have emerged from the attack on Microsoft’s SharePoint servers in which a Chinese hacking ...

Good: No-code tools like Microsoft Power Platform are fueling a surge in citizen-built apps. Bad: Most of those apps are flying under the radar of traditional security.

Microsoft phishing scams use fake security alerts and links that redirect to credential-stealing pages with warning signs, ...

A top security researcher claims the massive SharePoint zero-day attack was fueled by a leak from a Microsoft partner program, giving hackers a critical head start.

Threat actors exploit SharePoint flaws to access internal systems, steal sensitive data, and carry out surveillance, ...

Microsoft blamed two Chinese nation-state actors for exploiting recently discovered security flaws in SharePoint to ...

Researcher Khoa Dinh originally discovered the attack chain, and earlier this month, Code White GmbH was able to reproduce ...

Chinese-linked hackers breached several U.S. government agencies, including the Department of Homeland Security and the Department of Health and Human Services, by exploiting a vulnerability in ...

New estimates regarding the recently-exploited Microsoft SharePoint vulnerabilities now evaluate that as many as 400 ...