If exploited, attackers can gain full access to SharePoint content and potentially pivot to Outlook, Teams, and OneDrive.

Microsoft says the Chinese threat actors Linen Typhoon, Violet Typhoon, and Storm-2603 have been exploiting the ToolShell zero-days.

Hackers with ties to the Chinese government have been linked to a recent wave of widespread attacks targeting a Microsoft ...

The term "zero-day" attack refers to when a previously unknown vulnerability is targeted. Tens of thousands of servers are ...

More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the ...

Patches for two vulnerable editions of Microsoft's on-premises SharePoint Server collaboration tool are now available, with ...

A security patch released by Microsoft last month failed to fully fix a critical flaw in U.S. tech giant's SharePoint server ...

Microsoft has observed three China-based threat actors, Linen Typhoon, Violet Typhoon and Storm-2603, exploiting the ...

Microsoft said an attack campaign targeting zero-day vulnerabilities in on-premises SharePoint servers appears to have begun ...

As Microsoft puts the final patch in place, a growing number of hackers, including several China state-sponsored threat groups, are quickly pushing forward to exploit the security flaws that will ...

Microsoft has issued an emergency fix for SharePoint software due to a zero-day vulnerability. Hackers exploited this flaw, ...

Microsoft is issuing an emergency fix to close off a vulnerability in Microsoft’s SharePoint software that hackers have ...