News

Microsoft, SharePoint

Again? Microsoft hit for poor security in major SharePoint hack
The company has been called out repeatedly for inadequate security practices, and now we have another case in point: a successful SharePoint hack that’s among the worst in Microsoft’s history.
US Fermilab hit in cyberattack targeting Microsoft’s SharePoint, Bloomberg News reports
(Reuters) -One of the U.S. Department of Energy's 17 national labs was attacked by hackers as part of a recent campaign seeking to exploit flaws in Microsoft's SharePoint software, Bloomberg News reported on Tuesday,
Ransomware gangs are hunting Microsoft SharePoint hack victims
Ransomware gangs are on the hunt for organizations that have yet to patch their vulnerable Microsoft SharePoint servers. Why it matters: Those could include organizations across the government and sectors including education,
Fermilab hacked as part of SharePoint cyberattack, Bloomberg reports
The Fermi National Accelerator Laboratory, one of the Department of Energy’s national labs, has breached by cyberattackers as part of a recent
Microsoft says some SharePoint server hackers now using ransomware
A cyber-espionage campaign centered on vulnerable versions of Microsoft's server software now involves the deployment of ransomware, Microsoft said in a late Wednesday blog post.
SharePoint Zero-Days Exploited to Unleash Warlock Ransomware
Nearly 150 different organizations' on-premises SharePoint servers have been exploited by attackers targeting the zero-day vulnerabilities now tracked as ToolShell,
More than 90 state, local governments targeted using Microsoft SharePoint vulnerability, group says
More than 90 state and local governments have been targeted using the recently revealed vulnerability in Microsoft server ...
Palo Alto Networks investigating ransomware threat related to SharePoint exploitation
Researchers from Palo Alto Networks say they are investigating a ransomware attack related to the recently disclosed ...
The Hacker News9h
Storm-2603 Exploits SharePoint Flaws to Deploy Ransomware via DNS-Controlled Backdoor
The activity has been attributed to Storm-2603, which, according to Microsoft, is a suspected China-based threat actor that ...
Techopedia1d
Microsoft SharePoint Attack: Patch Fatigue or Failure of Legacy Systems?
A new SharePoint exploit bypassed Microsoft’s patch, exposing over 8,000 systems and revealing deep flaws in on-premise ...
Microsoft SharePoint attack: Officials issue warning about 'active exploitation'
Federal cybersecurity officials have issued a warning to Microsoft users about a security flaw allowing hackers to access to ...
What to know about a vulnerability being exploited on Microsoft SharePoint servers
Microsoft is issuing an emergency fix to close off a vulnerability in Microsoft’s SharePoint software that hackers have ...
CPO Magazine2d
U.S. Nuclear Agency Breached via ToolShell SharePoint Vulnerability Chain
A U.S. nuclear agency was among the victims of the SharePoint vulnerability chain, which was exploited to compromise over 54 ...
Microsoft knew of SharePoint security flaw but failed to effectively patch it, timeline shows
A security patch Microsoft (MSFT.O), opens new tab released this month failed to fully fix a critical flaw in the U.S. tech ...
DHS and HHS among federal agencies hacked in Microsoft SharePoint breach
Department of Homeland Security headquarters, several of its agencies and the Department of Health and Human Services have ...
SharePoint-ageddon attacks riddled with free Warlock ransomware - and thousands of services could be compromised
One strain in circulation is said to be the “Warlock” ransomware, distributed freely within compromised environments. The pattern of chained exploits, combining the newer CVEs with older ones like CVE ...