Security researchers have discovered a new ransomware variant that exploits previously known SharePoint vulnerabilities. The ...

A coordinated phishing campaign has breached sensitive patient data at several cancer care providers affiliated with a ...

A new wave of phishing attacks has been exploiting Microsoft 365 environments, successfully bypassing even two-factor ...

Ransomware gangs have recently joined ongoing attacks targeting a Microsoft SharePoint vulnerability chain, part of a broader ...

Microsoft reportedly used China-based engineers to maintain its exploited SharePoint software, raising urgent national ...

Recent discoveries by Kaspersky’s Global Research and Analysis Team (GReAT) highlight the evolving nature of cyber threats.

Microsoft released patches for a SharePoint zero-day bug after hackers compromised over 400 servers worldwide using ...

Chinese hackers are targeting more sensitive U.S. targets than ever — not to smash and grab, but to bide their time. Why it ...

A sophisticated cyber campaign targeting Microsoft 365 users employs fake OAuth applications to circumvent multifactor authentication (MFA) protections, representing the latest evolution in ...

In this week's update, four ISMG editors discussed the latest on the ToolShell exploit and the rise of Warlock ransomware, ...

The ongoing campaign, first detected in early 2025, is designed to use the OAuth applications as a gateway to obtain ...

Proofpoint observed campaigns impersonating trusted brands like SharePoint and DocuSign with malicious OAuth applications to ...