Multiple hacking groups—including state actors from China—have targeted a vulnerability in older, on-premises versions of the ...

Though the vulnerability was first identified in May, it's taken more than two months for Microsoft to issue an effective fix.

The U.S. government agency that maintains and designs America's nuclear weapons was reportedly breached by attackers ...

Microsoft says the Chinese threat actors Linen Typhoon, Violet Typhoon, and Storm-2603 have been exploiting the ToolShell ...

CISA has mandated immediate mitigation for federal agencies, while analysts urge enterprises to accelerate cloud migration ...

Discover the facts about Microsoft SharePoint zero-day vulnerabilities CVE-2025-53770 and CVE-2025-53771 and their impact.

A new vulnerability dubbed ToolShell is being used to compromise on-premise instances of Microsoft SharePoint servers.

If exploited, attackers can gain full access to SharePoint content and potentially pivot to Outlook, Teams, and OneDrive.

On July 21, Microsoft rolled out emergency patches for two newly discovered critical vulnerabilities, CVE-2025-53770 and ...

The vulnerability, tracked as CVE-2025-53770, carries a severity rating of 9.8 out of a possible 10. It gives unauthenticated remote access to SharePoint Servers exposed to the Internet. Starting ...

The active exploitation of a dangerous zero-day vulnerability chain in Microsoft SharePoint – which was disclosed over the ...

Hackers have been exploiting two zero-day vulnerabilities in on-premises installations of Microsoft SharePoint to gain remote ...