A top security researcher claims the massive SharePoint zero-day attack was fueled by a leak from a Microsoft partner program ...

"A leak happened here somewhere," Dustin Childs, head of threat awareness at Trend Micro's Zero Day Initiative (ZDI), told ...

A security patch Microsoft released this month failed to fully fix a critical flaw in the U.S. tech giant's SharePoint server ...

Microsoft is investigating whether a leak from its early alert system for cybersecurity companies allowed Chinese hackers to exploit flaws in its SharePoint service before they were patched, Bloomberg ...

Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code ...

The ToolShell bugs are being exploited by cybercriminals and APT groups alike, with the US on the receiving end of 13 percent ...

In yet another alarming example of government systems falling prey to cyber threats, the National Nuclear Security ...

A July 8 fix for a critical SharePoint zero-day failed to stop active exploitation, enabling state-backed attackers to breach ...

Hackers are actively exploiting a critical SharePoint zero-day (CVE-2025-53770), hitting 400+ firms and institutions like the ...

Microsoft has pointed the finger at three Chinese nation-state actors for exploiting the SharePoint vulnerabilities. Here's what we know about the security flaws and how to guard against future ...

ESET Research has been monitoring intense attacks involving the recently discovered ToolShell zero-day vulnerabilities.