Microsoft warns of active attacks by Chinese hackers exploiting SharePoint flaws CVE-2025-49706 and CVE-2025-49704, urging urgent patching and mitigation steps.

Over the past three months, our threat analysts have noticed a significant spike in attackers abusing Microsoft 365’s Direct Send feature—a tool intended for devices like printers or scanners to send ...

Microsoft has issued a stark warning about a recent cyberattack targeting critical infrastructure, including the U.S.

A new SharePoint exploit bypassed Microsoft’s patch, exposing over 8,000 systems and revealing deep flaws in on-premise ...

Critical zero-day vulnerabilities in Microsoft SharePoint, tracked as CVE-2025-53770 and CVE-2025-53771, have been actively ...

The term "zero-day" attack refers to when a previously unknown vulnerability is targeted. Tens of thousands of servers are ...

Learn how to enhance your approach to data loss prevention with AI in mind, including what capabilities are essential for ...

Britain's National Cyber Security Centre reported a limited number of UK-based victims in a cyber attack targeting ...

GPT-5 had already been spotted in the wild before Altman’s appearance on This Past Weekend, fueling speculation that the next ...

Zero-day exploits are the ghosts in the machine, silent, invisible, and devastating when they finally make themselves known.

External workbook links which point to file types blocked by Excel's Trust Center will be disabled by default starting in October 2025, as Microsoft tightens down on reducing the potential security ...

Microsoft has issued a warning about active attacks on SharePoint server software used by government and business ...