News

Palo Alto Networks investigating ransomware threat related to SharePoint exploitation
Researchers from Palo Alto Networks say they are investigating a ransomware attack related to the recently disclosed ...
The Hacker News13h
Storm-2603 Deploys DNS-Controlled Backdoor in Warlock and LockBit Ransomware Attacks
The activity has been attributed to Storm-2603, which, according to Microsoft, is a suspected China-based threat actor that ...
SharePoint-ageddon attacks riddled with free Warlock ransomware - and thousands of services could be compromised
One strain in circulation is said to be the “Warlock” ransomware, distributed freely within compromised environments. The pattern of chained exploits, combining the newer CVEs with older ones like CVE ...
Techopedia1d
Microsoft SharePoint Attack: Patch Fatigue or Failure of Legacy Systems?
A new SharePoint exploit bypassed Microsoft’s patch, exposing over 8,000 systems and revealing deep flaws in on-premise ...
Axios on MSN3d
Ransomware gangs are hunting Microsoft SharePoint hack victims
Ransomware gangs are on the hunt for organizations that have yet to patch their vulnerable Microsoft SharePoint servers. Why ...
SecurityWeek21h
In Other News: Microsoft Probes ToolShell Leak, Port Cybersecurity, Raspberry Pi ATM Hack
Microsoft investigates whether the ToolShell exploit was leaked via MAPP, port cybersecurity, physical backdoor used for ATM ...
China says US spies exploited Microsoft Exchange zero-day to steal military info
China has accused US intelligence agencies of exploiting a Microsoft Exchange zero-day exploit to steal defense-related data ...
The Hacker News22h
Attackers Use Fake OAuth Apps with Tycoon Kit to Breach Microsoft 365 Accounts
The ongoing campaign, first detected in early 2025, is designed to use the OAuth applications as a gateway to obtain ...
CSO Online1d
Cybercrooks faked Microsoft OAuth apps for MFA phishing
Proofpoint observed campaigns impersonating trusted brands like SharePoint and DocuSign with malicious OAuth applications to ...
Microsoft spotlights Apple bug patched in March as SharePoint exploits continue
Sploitlight turns these plugins into a Transparency, Consent, and Control (TCC) bypass. TCC is a macOS security framework ...
Que.com on MSN1d
Ransomware Groups Target Microsoft SharePoint Users in Latest Cyberattack
In a world increasingly dependent on digital infrastructure, cybercrime has become an ever-prevalent threat. In the latest wave of cyberattacks, ...
Microsoft says some SharePoint server hackers now using ransomware
A cyber-espionage campaign centered on vulnerable versions of Microsoft's server software now involves the deployment of ransomware, Microsoft said in a late Wednesday blog post.