The vulnerability, tracked as CVE-2025-53770, carries a severity rating of 9.8 out of a possible 10. It gives unauthenticated remote access to SharePoint Servers exposed to the Internet. Starting ...

Microsoft has observed two named Chinese nation-state actors, Linen Typhoon and Violet Typhoon, exploiting vulnerabilities ...

Active SharePoint exploits since July 7 target governments and tech firms globally, risking key theft and persistent access.

Patches for two vulnerable editions of Microsoft's on-premises SharePoint Server collaboration tool are now available, with ...

Microsoft’s detailed attribution and response to the exploitation of SharePoint vulnerabilities signal an urgent need for ...

Microsoft has issued a stark warning about a recent cyberattack targeting critical infrastructure, including the U.S.

TL;DR Introduction We investigated a ransomware incident on a Windows Server 2012 host running in an SFTP-only role. The ...

Critical zero-day vulnerabilities in Microsoft SharePoint, tracked as CVE-2025-53770 and CVE-2025-53771, have been actively ...

SharePoint flaws exploited in wild, no patch yet for 2016/2019 editions. Over 85 servers compromised globally since July 18.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), in an alert, said it's aware of active exploitation of CVE-2025-53770, which enables unauthenticated access to SharePoint systems and ...

Microsoft is racing to contain a fast‑moving zero‑day campaign against on‑premises SharePoint Server after researchers ...

A computer attack of global scale has targeted government agencies and companies on at least three continents, exploiting a ...