If exploited, attackers can gain full access to SharePoint content and potentially pivot to Outlook, Teams, and OneDrive.

Anybody who’s got a hosted SharePoint server has got a problem,” said Adam Meyers, senior vice president with CrowdStrike, a ...

The newly discovered flaw in Microsoft's SharePoint software has allowed hackers to target dozens of companies and ...

Microsoft also has issued a patch for a related SharePoint vulnerability — CVE-2025-53771; Microsoft says there are no signs ...

Microsoft has started releasing updates to fix the exploited SharePoint zero-days tracked as CVE-2025-53770 and ...

Unknown threat actors are using a weaponised version of an exploit showcased at Pwn2Own Berlin in May to target SharePoint ...

Microsoft issued an alert about "active attacks" targeting its SharePoint server software, which is widely used by businesses and government agencies to share files.

The “ToolShell” cyberattack campaign exploiting zero-day vulnerabilities in on-premises Microsoft SharePoint Servers has so ...

Microsoft warned users that hackers used a security flaw in its server software to attack government agencies and businesses ...

Microsoft has released two emergency patches to address zero-day vulnerabilities that have been found in SharePoint RCE. Actively exploited in attacks, the two flaws (tracked as CVE-2025-53770 and CVE ...

Hackers have been exploiting a zero-day vulnerability dubbed "ToolShell" in on-premises installations of Microsoft SharePoint to gain remote access, and ...

Microsoft ha emitido una solución de emergencia para cerrar una vulnerabilidad en su ampliamente utilizado software SharePoint, que los hackers han ...