A top security researcher claims the massive SharePoint zero-day attack was fueled by a leak from a Microsoft partner program, giving hackers a critical head start.

On July 20, 2025, Microsoft and the Cybersecurity and Infrastructure Security Agency (CISA) issued urgent warnings about new, actively ...

Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code ...

Microsoft has confirmed that vulnerabilities in its on-premises SharePoint Server installations, a network spoofing vulnerability (CVE-202549706), ...

Microsoft contained a major SharePoint security flaw, amid fresh questions about the future of its legacy on-premises ...

Several entities in South Africa have been compromised by hackers who exploited a security vulnerability in Microsoft’s ...

The company says several Chinese state-aligned groups have exploited the zero-day vulnerability disclosed on Saturday.

Microsoft has issued a stark warning about a recent cyberattack targeting critical infrastructure, including the U.S. National Nuclear Security Administration (NNSA), exposing vulnerabilities in its ...

The zero-day vulnerability — which was first disclosed late Saturday — has been exploited by several Chinese state-aligned ...

Microsoft was recently hit with cyber-attack on SharePoint servers. Here's why CRWD and PANW are worth owning after this ...

The SharePoint vulnerabilities that Microsoft released emergency patches for earlier this week – tracked as CVE-2025-53770 ...

A massive cyber-espionage campaign has compromised nearly 400 organizations globally by exploiting a critical vulnerability ...