News

Again? Microsoft hit for poor security in major SharePoint hack
The company has been called out repeatedly for inadequate security practices, and now we have another case in point: a ...
Microsoft SharePoint Hackers Switch Gears to Spread Ransomware
Threat actors exploit SharePoint flaws to access internal systems, steal sensitive data, and carry out surveillance, ...
The Hacker News3h
Storm-2603 Exploits SharePoint Flaws to Deploy Ransomware via DNS-Controlled Backdoor
The activity has been attributed to Storm-2603, which, according to Microsoft, is a suspected China-based threat actor that ...
SharePoint-ageddon attacks riddled with free Warlock ransomware - and thousands of services could be compromised
One strain in circulation is said to be the “Warlock” ransomware, distributed freely within compromised environments. The pattern of chained exploits, combining the newer CVEs with older ones like CVE ...
Que.com on MSN10h
Ransomware Groups Target Microsoft SharePoint Users in Latest Cyberattack
In a world increasingly dependent on digital infrastructure, cybercrime has become an ever-prevalent threat. In the latest wave of cyberattacks, ...
Axios on MSN2d
Ransomware gangs are hunting Microsoft SharePoint hack victims
Ransomware gangs are on the hunt for organizations that have yet to patch their vulnerable Microsoft SharePoint servers. Why ...
Techopedia1d
Microsoft SharePoint Attack: Patch Fatigue or Failure of Legacy Systems?
A new SharePoint exploit bypassed Microsoft’s patch, exposing over 8,000 systems and revealing deep flaws in on-premise ...
Blame a leak for Microsoft SharePoint attacks, researcher insists
"A leak happened here somewhere," Dustin Childs, head of threat awareness at Trend Micro's Zero Day Initiative (ZDI), told ...
CSO Online1h
Cybercrooks faked Microsoft OAuth apps for MFA phishing
Proofpoint observed campaigns impersonating trusted brands like SharePoint and DocuSign with malicious OAuth applications to ...
Microsoft spotlights Apple bug patched in March as SharePoint exploits continue
Sploitlight turns these plugins into a Transparency, Consent, and Control (TCC) bypass. TCC is a macOS security framework ...
Microsoft says some SharePoint server hackers now using ransomware
A cyber-espionage campaign centered on vulnerable versions of Microsoft's server software now involves the deployment of ransomware, Microsoft said in a late Wednesday blog post.
Security Boulevard1d
Response to CISA Alert: Microsoft Releases Guidance on Exploitation of SharePoint Vulnerabilities
AttackIQ has released a new emulation that compiles the Tactics, Techniques, and Procedures (TTPs) associated with the ...