A July 8 fix for a critical SharePoint zero-day failed to stop active exploitation, enabling state-backed attackers to breach nearly 100 organizations worldwide.

Major cyberattacks in 2025 so far have included the Microsoft SharePoint Server “ToolShell” attacks, the ransomware attack against IT distributor Ingram Micro and a series of Scattered Spider attacks targeting numerous industries.

Microsoft contained a major SharePoint security flaw, amid fresh questions about the future of its legacy on-premises software.

“For on-premises SharePoint users within our agencies, no breaches have been detected,” Shayne Martin said via email. He is the public information officer for Missouri’s Office of Administration, which oversees the state’s Information Technology ...

Microsoft is racing to contain a critical security flaw in its SharePoint collaboration software that has already been exploited by threat actors to infiltrate thousands of organisations globally. The vulnerability,

WASHINGTON] The number of companies and organisations compromised by a security vulnerability in Microsoft’s SharePoint servers is increasing rapidly, with the tally of victims soaring more than six-fold in a few days,

Microsoft issued an emergency fix to close off a vulnerability in its SharePoint software that hackers have exploited to carry out widespread attacks on businesses and at least some federal agencies.

Microsoft Corp. said a Chinese hacking group is exploiting security vulnerabilities in the company’s SharePoint servers to deploy ransomware, following a cyberattack discovered last week that has affected hundreds of entities around the world.