Order byBest matchMost fresh

SharePoint, Microsoft and Security

Digest more
Microsoft SharePoint under 'active exploitation,' Homeland Security's CISA says
Eye Security, a cybersecurity firm, says it "identified active large-scale exploitation" of the new vulnerability "being used in the wild" on SharePoint servers across the world and discovered "dozens of systems actively compromised," according to a blog post on the firm's website. The breaches "probably" began on the evening of July 18.

Continue reading

JD Supra · 3h
Active and Critical Security Concern for SharePoint
Microsoft SharePoint attack: Officials issue warning about 'active exploitation'
Tally of Microsoft victims surges to 400 as hackers exploit SharePoint flaw
The number of companies and organizations compromised by a security vulnerability in Microsoft Corp.’s SharePoint servers is increasing rapidly, with the tally of victims soaring more than sixfold in ...

Continue reading

Chinese Hackers Are Exploiting Flaws in Widely Used Software, Microsoft Says
Nuclear Weapons Agency Breached in Microsoft SharePoint Hack
The SharePoint flaw has now hit over 400 companies including a US nuclear administration
The Eye Security researchers have cautioned that the number of companies hacked may still grow as there are ways to compromise servers that do not leave traces, and that other "opportunistic" hackers...

Continue reading

CSOonline · 1d
Microsoft’s incomplete SharePoint patch led to global exploits by China-linked hackers
Microsoft seemingly confirms Chinese hackers behind SharePoint server attacks
Federal News Network3d
Agencies face tight deadline to mitigate SharePoint vulnerability
CISA gave agencies until the end of the day on Monday to mitigate a severe zero-day vulnerability in Microsoft's widely used SharePoint software.
Krebs on Security4d
Microsoft Fix Targets Attacks on SharePoint Zero-Day
Microsoft also has issued a patch for a related SharePoint vulnerability — CVE-2025-53771; Microsoft says there are no signs of active attacks on CVE-2025-53771, and that the patch is to provide more robust protections than the update for CVE-2025-49706.
New zero-day bug in Microsoft SharePoint under widespread attack
Security researchers say Microsoft customers should take immediate action to defend against the ongoing cyberattacks, and must assume they have already been compromised.
Nextgov1d
DHS impacted in hack of Microsoft SharePoint products, people familiar say
The zero-day vulnerability — which was first disclosed late Saturday — has been exploited by several Chinese state-aligned groups, according to Microsoft.
The Microsoft SharePoint breach was massive. The response has been minimal
A critical vulnerability in on-premise SharePoint servers allowed state-backed hackers to breach governments and institutions worldwide. Experts are questioning why more hasn't been done or said.
TechCentral.ie3d
Microsoft, CISA warn of cyberattacks targeting on-premise SharePoint servers
Microsoft has warned that hackers are exploiting a critical vulnerability in SharePoint, dubbed ToolShell, to launch attacks against on-premise customers. The vulnerability, tracked as CVE-2025-53770,
Feedback