If exploited, attackers can gain full access to SharePoint content and potentially pivot to Outlook, Teams, and OneDrive.

Microsoft, in an alert posted Saturday, July 19, said the vulnerability enables an “authorized attacker to perform spoofing ...

Microsoft also has issued a patch for a related SharePoint vulnerability — CVE-2025-53771; Microsoft says there are no signs ...

Security researchers say Microsoft customers should take immediate action to defend against the ongoing cyberattacks, and ...

Patches have been issued for two versions of Microsoft’s SharePoint software, while one version remains vulnerable.

Microsoft has issued an urgent security alert this weekend after discovering attackers exploiting a critical zero‑day ...

More details emerged on the ToolShell zero-day attacks targeting SharePoint servers, but confusion remains over the ...

Microsoft has issued a warning to its business clients regarding active attacks exploiting vulnerabilities in on-premises ...

Active SharePoint exploits since July 7 target governments and tech firms globally, risking key theft and persistent access.

Microsoft is dealing with a high-stakes security mess. A zero-day vulnerability in its on-premises SharePoint servers is under active attack, and close to 100 organizations are already affected. This ...

Hackers have exploited vulnerabilities in Microsoft’s SharePoint software, placing tens of thousands of on-premises servers used by global businesses and agencies at risk. Microsoft issued an alert on ...