A new vulnerability dubbed ToolShell is being used to compromise on-premise instances of Microsoft SharePoint servers.

If exploited, attackers can gain full access to SharePoint content and potentially pivot to Outlook, Teams, and OneDrive.

Washington: Hackers exploited a major security flaw in widely used Microsoft server software to launch a global attack on government agencies and businesses in the past few days, breaching US federal ...

More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the ...

Active SharePoint exploits since July 7 target governments and tech firms globally, risking key theft and persistent access.

A sweeping cyber espionage operation took aim at Microsoft’s SharePoint servers, and compromised about 100 different ...

Microsoft has warned of “active attacks” targeting its SharePoint collaboration software, with security researchers noting ...

Microsoft has issued an emergency fix for SharePoint software due to a zero-day vulnerability. Hackers exploited this flaw, ...

It issued an alert about “active attacks” targeting its server software and urged customers to install new security updates ...

Microsoft released a patch Monday for SharePoint Server 2016 that protects customers against a pair of vulnerabilities, which ...

Researchers say Chinese actors, along with other criminal hackers, exploited a security flaw in SharePoint software widely ...

Among the attackers now actively exploiting vulnerable on-premises Microsoft SharePoint servers, at least one has shown ...