News

Microsoft Used China-Based Engineers to Maintain Vulnerable SharePoint
Microsoft identified at least three threat groups believed to be affiliated with China that have been exploiting publicly ...
How your org can avoid being a victim of the next “SharePoint”
The companies that fare best in the face of cyber threats aren’t always the biggest or the most high-tech: they’re the most ...
Microsoft SharePoint bug puts critical government agencies at risk
Microsoft released patches for a SharePoint zero-day bug after hackers compromised over 400 servers worldwide using ...
Homeland Security Today10h
CISA Releases Malware Analysis Report Associated with Microsoft SharePoint Vulnerabilities
CISA has published a Malware Analysis Report (MAR) with analysis and associated detection signatures on files related to Microsoft SharePoint vulnerabilities ...
Microsoft urges users to be on alert following high-severity flaw in hybrid Exchange deployments
Microsoft has urged its customers to be on high alert after discovering a dangerous vulnerability in hybrid Exchange ...
The American Bazaar2d
Microsoft relied on Chinese engineering team for SharePoint later hacked by China
Chinese state-sponsored hackers exploited a SharePoint vulnerability, raising concerns over Microsoft's reliance on ...
Microsoft Used China-Based Engineers to Support Product Recently Hacked by China
Microsoft announced that Chinese state-sponsored hackers had exploited vulnerabilities in its popular SharePoint software but ...
The Hacker News6h
Microsoft Discloses Exchange Server Flaw Enabling Silent Cloud Access in Hybrid Setups
"In an Exchange hybrid deployment, an attacker who first gains administrative access to an on-premises Exchange server could ...
The Register on MSN3h
CISA releases malware analysis for Sharepoint Server attack
Indications of compromise and Sigma rules report for your security scanners amid ongoing 'ToolShell' blitz CISA has published a malware analysis report with compromise indicators and Sigma rules for ...
SharePoint-ageddon attacks riddled with free Warlock ransomware - and thousands of services could be compromised
One strain in circulation is said to be the “Warlock” ransomware, distributed freely within compromised environments. The pattern of chained exploits, combining the newer CVEs with older ones like CVE ...
Palo Alto Networks investigating ransomware threat related to SharePoint exploitation
Researchers from Palo Alto Networks say they are investigating a ransomware attack related to the recently disclosed ...