Active SharePoint exploits since July 7 target governments and tech firms globally, risking key theft and persistent access.

The vulnerability, tracked as CVE-2025-53770, carries a severity rating of 9.8 out of a possible 10. It gives unauthenticated ...

CISA flags Microsoft SharePoint flaws under active attack by Chinese hackers. U.S. agencies must patch by July 23 ...

Newly published research shows that the domain name system—a fundamental part of the web—can be exploited to hide malicious ...

Microsoft has released emergency SharePoint security updates for two zero-day vulnerabilities tracked as CVE-2025-53770 and CVE-2025-53771 that have compromised services worldwide in "ToolShell" ...

Researchers have known for almost a decade that threat actors sometimes use DNS records to host malicious PowerShell scripts.

Iranian APT MuddyWater has been using new versions of the DCHSpy Android surveillance tool since the beginning of the ...

A Connecticut-based firm that provides print and electronic document management services to health plans has reported to ...

Hackers are actively exploiting a critical SharePoint zero-day vulnerability to compromise dozens of servers and steal ...

Hackers have adopted the new technique called 'FileFix' in Interlock ransomware attacks to drop a remote access trojan (RAT) ...

Microsoft has observed two named Chinese nation-state actors, Linen Typhoon and Violet Typhoon, exploiting vulnerabilities ...

AI Agents Are Getting Better at Writing Code—and Hacking It as Well One of the best bug-hunters in the world is an AI tool called Xbow, just one of many signs of the coming age of cybersecurity ...