If exploited, attackers can gain full access to SharePoint content and potentially pivot to Outlook, Teams, and OneDrive.

Hackers with ties to the Chinese government have been linked to a recent wave of widespread attacks targeting a Microsoft ...

Microsoft says the Chinese threat actors Linen Typhoon, Violet Typhoon, and Storm-2603 have been exploiting the ToolShell zero-days.

Microsoft has started releasing updates to fix the exploited SharePoint zero-days tracked as CVE-2025-53770 and CVE-2025-53771.

A security patch released by Microsoft earlier this month failed to fully fix a critical flaw in the U.S. tech company’s SharePoint server software that had been identified at a hacking competition in ...

Microsoft is following up and is also releasing a patch for the 2016 edition of Sharepoint. Admins should install this ...

Microsoft has observed three China-based threat actors, Linen Typhoon, Violet Typhoon and Storm-2603, exploiting the ...

A security patch Microsoft released this month failed to fully fix a critical flaw in the U.S. tech giant's SharePoint server ...

A recent security breach related to Microsoft SharePoint exposes critical vulnerabilities despite a July patch, linking ...

Exploitation of the ToolShell RCE zero-day in Microsoft SharePoint continues to gather pace, with evidence emerging of ...

On July 21, Microsoft rolled out emergency patches for two newly discovered critical vulnerabilities, CVE-2025-53770 and ...

A security patch released by Microsoft earlier this month failed to fully fix a critical flaw in the company's SharePoint ...