CISA flags Microsoft SharePoint flaws under active attack by Chinese hackers. U.S. agencies must patch by July 23 ...

Eye Security, a cybersecurity firm, says it "identified active large-scale exploitation" of the new vulnerability "being used ...

CISA gave agencies until the end of the day on Monday to mitigate a severe zero-day vulnerability in Microsoft's widely used ...

Microsoft also has issued a patch for a related SharePoint vulnerability — CVE-2025-53771; Microsoft says there are no signs ...

The zero-day vulnerability — which was first disclosed late Saturday — has been exploited by several Chinese state-aligned ...

Department of Homeland Security headquarters, several of its agencies and the Department of Health and Human Services have ...

Federal cybersecurity officials have issued a warning to Microsoft users about a security flaw allowing hackers to access to ...

CISA has mandated immediate mitigation for federal agencies, while analysts urge enterprises to accelerate cloud migration ...

Security researchers say Microsoft customers should take immediate action to defend against the ongoing cyberattacks, and ...

Hackers have been exploiting two zero-day vulnerabilities in on-premises installations of Microsoft SharePoint to gain remote ...

Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code ...

The zero-day attack involving Microsoft software is serious, but fixes are available now for some versions of SharePoint.