News

Again? Microsoft hit for poor security in major SharePoint hack
The company has been called out repeatedly for inadequate security practices, and now we have another case in point: a ...
More than 90 state, local governments targeted using Microsoft SharePoint vulnerability, group says
More than 90 state and local governments have been targeted using the recently revealed vulnerability in Microsoft server ...
Security Boulevard2d
Response to CISA Alert: Microsoft Releases Guidance on Exploitation of SharePoint Vulnerabilities
AttackIQ has released a new emulation that compiles the Tactics, Techniques, and Procedures (TTPs) associated with the ...
CPO Magazine2d
U.S. Nuclear Agency Breached via ToolShell SharePoint Vulnerability Chain
A U.S. nuclear agency was among the victims of the SharePoint vulnerability chain, which was exploited to compromise over 54 ...
Techopedia1d
Microsoft SharePoint Attack: Patch Fatigue or Failure of Legacy Systems?
A new SharePoint exploit bypassed Microsoft’s patch, exposing over 8,000 systems and revealing deep flaws in on-premise ...
Microsoft Used China-Based Engineers to Support Product Recently Hacked by China
Microsoft announced that Chinese state-sponsored hackers had exploited vulnerabilities in its popular SharePoint software but ...
ABP News on MSN2d
US Fermilab Hit By Cyberattack Amid Global Microsoft SharePoint Vulnerability
The incident follows reports that a recent Microsoft security patch failed to fully address a serious flaw in SharePoint ...
Microsoft SharePoint Hackers Switch Gears to Spread Ransomware
Threat actors exploit SharePoint flaws to access internal systems, steal sensitive data, and carry out surveillance, ...
Cyberattack hits U.S. Fermi Lab in breach linked to Microsoft SharePoint vulnerability - report
The Fermi National Accelerator Laboratory, one of the Department of Energy’s 17 national labs, was reportedly attacked by ...
ZAWYA4d
Kaspersky reveals SharePoint ToolShell vulnerabilities stem from incomplete 2020 fix
Kaspersky GReAT researchers analyzed the published ToolShell exploit and found it alarmingly similar to the 2020 ...
Gaps in Microsoft SharePoint: Zero days that may not have been zero days at all
The attacks on SharePoint servers exploited known vulnerabilities for which patches were already available. It remains to be ...
SharePoint-ageddon attacks riddled with free Warlock ransomware - and thousands of services could be compromised
One strain in circulation is said to be the “Warlock” ransomware, distributed freely within compromised environments. The pattern of chained exploits, combining the newer CVEs with older ones like CVE ...