ClickFix abuses clipboards. FileFix hijacks File Explorer. Both social engineering attacks start in the browser—and end in ...

Ransomware gangs have recently joined ongoing attacks targeting a Microsoft SharePoint vulnerability chain, part of a broader ...

Newly published research shows that the domain name system—a fundamental part of the web—can be exploited to hide malicious ...

Russian defense firms hit by cyberattacks using EAGLET malware via phishing lures; threat actors linked to Head Mare and ...

Active SharePoint exploits since July 7 target governments and tech firms globally, risking key theft and persistent access.

Microsoft has issued a stark warning about a recent cyberattack targeting critical infrastructure, including the U.S.

Researchers first uncovered a sweeping cyber espionage operation targeting Microsoft server software affecting at least 100 ...

The vulnerability, tracked as CVE-2025-53770, carries a severity rating of 9.8 out of a possible 10. It gives unauthenticated ...

Microsoft has observed two named Chinese nation-state actors, Linen Typhoon and Violet Typhoon, exploiting vulnerabilities ...

Update, July 28, 2025: This story, originally published on July 27, has been updated with further comments and mitigation ...

SharePoint flaws exploited in wild, no patch yet for 2016/2019 editions. Over 85 servers compromised globally since July 18.

On July 21, Microsoft rolled out emergency patches for two newly discovered critical vulnerabilities, CVE-2025-53770 and ...