A top security researcher claims the massive SharePoint zero-day attack was fueled by a leak from a Microsoft partner program, giving hackers a critical head start.

On July 20, 2025, Microsoft and the Cybersecurity and Infrastructure Security Agency (CISA) issued urgent warnings about new, actively ...

In response to a U.S. government report last year, Microsoft pledged to rededicate itself to protecting itself and its ...

Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code ...

A widespread cyberattack exploiting a vulnerability in Microsoft’s software has struck South Africa, hitting the National Treasury, a major car manufacturer, a university, and several local government ...

Microsoft has confirmed that vulnerabilities in its on-premises SharePoint Server installations, a network spoofing vulnerability (CVE-202549706), ...

Microsoft contained a major SharePoint security flaw, amid fresh questions about the future of its legacy on-premises ...

The company says several Chinese state-aligned groups have exploited the zero-day vulnerability disclosed on Saturday.

Microsoft has issued a stark warning about a recent cyberattack targeting critical infrastructure, including the U.S.

The zero-day vulnerability — which was first disclosed late Saturday — has been exploited by several Chinese state-aligned ...

The SharePoint vulnerabilities that Microsoft released emergency patches for earlier this week – tracked as CVE-2025-53770 ...

A massive cyber-espionage campaign has compromised nearly 400 organizations globally by exploiting a critical vulnerability ...