Microsoft contained a major SharePoint security flaw, amid fresh questions about the future of its legacy on-premises ...

Microsoft has observed two named Chinese nation-state actors, Linen Typhoon and Violet Typhoon, exploiting vulnerabilities ...

Microsoft confirms Chinese hackers exploited a SharePoint flaw; Patches now available. Cloud-based Microsoft 365 not affected ...

Threat actors exploit SharePoint flaws to access internal systems, steal sensitive data, and carry out surveillance, ...

CISA has mandated immediate mitigation for federal agencies, while analysts urge enterprises to accelerate cloud migration ...

Ransomware has officially entered the Microsoft SharePoint exploitation ring. Late Wednesday, in an update to its earlier ...

A cyber-espionage campaign centered on vulnerable versions of Microsoft's server software now involves the deployment of ...

The zero-day vulnerability — which was first disclosed late Saturday — has been exploited by several Chinese state-aligned ...

Microsoft has now released a patch, but attackers were not idle over the weekend. Dozens of SharePoint installations fell ...

On-prem SharePoint customers have been told to assume compromise, with attackers observed to be exfiltrating data from victim ...

Microsoft says the Chinese threat actors Linen Typhoon, Violet Typhoon, and Storm-2603 have been exploiting the ToolShell ...

Tracing vulnerabilities from code to runtime can also reveal hard-to-find issues such as a reachable vulnerability in an open-source package that is used on an internet-reachable cloud workload.