This Alert was updated to reflect newly released information from Microsoft, and to correct the actively exploited Common ...

Microsoft has confirmed that vulnerabilities in its on-premises SharePoint Server installations, a network spoofing vulnerability (CVE-202549706), ...

A series of cyber intrusions targeting Microsoft’s SharePoint platform has triggered alarm across global businesses and ...

Microsoft SharePoint hack was identified in May 2025. However, it couldn't be avoid. Here's all you need to know about the security breach.

The active exploitation of a zero-day vulnerability in Microsoft SharePoint has led to a sweeping cyberattack involving over 100 organizations, including the U.S. National Nuclear Security ...

Multiple hacking groups—including state actors from China—have targeted a vulnerability in older, on-premises versions of the ...

A top security researcher claims the massive SharePoint zero-day attack was fueled by a leak from a Microsoft partner program, giving hackers a critical head start.

Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code ...

A program to share information with cybersecurity companies may have exposed unpatched flaws in the company’s SharePoint ...

Microsoft is investigating whether a leak from its early alert system for cybersecurity companies allowed Chinese hackers to ...

Researcher Khoa Dinh originally discovered the attack chain, and earlier this month, Code White GmbH was able to reproduce ...

Threat actors exploit SharePoint flaws to access internal systems, steal sensitive data, and carry out surveillance, ...