If exploited, attackers can gain full access to SharePoint content and potentially pivot to Outlook, Teams, and OneDrive.

Microsoft, in an alert posted Saturday, July 19, said the vulnerability enables an “authorized attacker to perform spoofing ...

Security researchers say Microsoft customers should take immediate action to defend against the ongoing cyberattacks, and ...

Patches have been issued for two versions of Microsoft’s SharePoint software, while one version remains vulnerable.

Microsoft has issued an alert about “active attacks” on server software used by government agencies and businesses to share ...

Hackers with ties to the Chinese government have been linked to a recent wave of widespread attacks targeting a Microsoft ...

Critical zero-day vulnerabilities in Microsoft SharePoint, tracked as CVE-2025-53770 and CVE-2025-53771, have been actively ...

Microsoft has observed two named Chinese nation-state actors, Linen Typhoon and Violet Typhoon, exploiting vulnerabilities ...

More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the ...

Microsoft has issued a warning to its business clients regarding active attacks exploiting vulnerabilities in on-premises ...

Microsoft warned SharePoint Server users of a vulnerability dubbed ToolShell in the software that was assigned CVE-2025-53770 ...