A top security researcher claims the massive SharePoint zero-day attack was fueled by a leak from a Microsoft partner program, giving hackers a critical head start.

On July 20, 2025, Microsoft and the Cybersecurity and Infrastructure Security Agency (CISA) issued urgent warnings about new, actively ...

In response to a U.S. government report last year, Microsoft pledged to rededicate itself to protecting itself and its ...

Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code ...

In a major cybersecurity incident, Chinese state-sponsored hacker groups exploited a critical zero-day vulnerability in Microsoft’s SharePoint software to breach over 100 organizations worldwide, ...

A widespread cyberattack exploiting a vulnerability in Microsoft’s software has struck South Africa, hitting the National Treasury, a major car manufacturer, a university, and several local government ...

Microsoft has confirmed that vulnerabilities in its on-premises SharePoint Server installations, a network spoofing vulnerability (CVE-202549706), ...

Microsoft contained a major SharePoint security flaw, amid fresh questions about the future of its legacy on-premises ...

Several entities in South Africa have been compromised by hackers who exploited a security vulnerability in Microsoft’s ...

The company says several Chinese state-aligned groups have exploited the zero-day vulnerability disclosed on Saturday.

Microsoft has issued a stark warning about a recent cyberattack targeting critical infrastructure, including the U.S.

The zero-day vulnerability — which was first disclosed late Saturday — has been exploited by several Chinese state-aligned ...