A hacker logs into nothing—no username, no password, no multifactor prompt. Yet within moments, they are stealing confidential business documents, creating administrator accounts and planting ...

Update, July 21, 2025: This story, originally published on July 20, has been updated to include additional expert comments regarding the global zero-day attack impacting Microsoft on-premise ...

Any business operating an on-premises (on-prem) Microsoft SharePoint server may want to take note of attacks targeting this infrastructure happening right now. The attack has been named ToolShell and ...

Media reports have pointed to global cyberattacks exploiting vulnerabilities in on-premises SharePoint Servers, which are believed to have compromised victims including the U.S. government. Microsoft ...

Microsoft is urging organizations to rotate machine keys for on-premises SharePoint Servers — an indicator that attackers are stealing the keys to enable further attacks, according to researchers.

Yes, you doubting Thomases and Thomasinas out there: SharePoint Server will live to see another release. Microsoft execs reconfirmed officially via a blog post on February 2 that there will be another ...

A Chinese-based threat actor has been observed using the flaws in Microsoft SharePoint to deploy ransomware on compromised systems. In an incident update on July 23, Microsoft revealed that a group ...

CISA has mandated immediate mitigation for federal agencies, while analysts urge enterprises to accelerate cloud migration and implement live threat detection. Attackers are exploiting a previously ...