News

CPO Magazine48m
Microsoft Releases Emergency Updates Amid Active Exploitation of SharePoint Zero-Day Vulnerability Chain
Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code ...
WeLiveSecurity6h
SharePoint under fire: ToolShell attacks hit organizations worldwide
The ToolShell bugs are being exploited by cybercriminals and APT groups alike, with the US on the receiving end of 13 percent ...
US Nuclear Agency Hit in SharePoint Cyberattack
In yet another alarming example of government systems falling prey to cyber threats, the National Nuclear Security ...
No login? No problem: Cisco ISE flaw gave root access before fix arrived, say researchers
Shadowserver claims miscreants were already poking at a critical hole in early July, long before Switchzilla patched it ...
Cybernews7h
Microsoft says China-linked SharePoint attackers seen hitting victims with Warlock ransomware
Microsoft says the Chinese nation-state threat actors behind last Friday’s zero-day attack on SharePoint servers have been ...
IT-Online5h
SharePoint ToolShell vulnerabilities stem from incomplete fix
Kaspersky’s Global Research and Analysis Team (GReAT) reveals that the recently exploited ToolShell vulnerabilities in Microsoft SharePoint originate from an incomplete fix for CVE-2020-1147, first ...
Computer Weekly21h
SharePoint users hit by Warlock ransomware, says Microsoft
Microsoft’s security analysts confirm that a number of cyber attacks on on-premise SharePoint Server users involve ransomware ...
PCMag on MSN21h
Microsoft SharePoint Flaw Is Being Abused to Spread Ransomware
It's not just data theft. A China-based hacking group is using a flaw in vulnerable SharePoint servers to deliver ransomware, ...