Threat actors exploit SharePoint flaws to access internal systems, steal sensitive data, and carry out surveillance, ...

Researchers from Palo Alto Networks say they are investigating a ransomware attack related to the recently disclosed ...

The activity has been attributed to Storm-2603, which, according to Microsoft, is a suspected China-based threat actor that ...

Ransomware gangs are on the hunt for organizations that have yet to patch their vulnerable Microsoft SharePoint servers. Why ...

One strain in circulation is said to be the “Warlock” ransomware, distributed freely within compromised environments. The pattern of chained exploits, combining the newer CVEs with older ones like CVE ...

In a world increasingly dependent on digital infrastructure, cybercrime has become an ever-prevalent threat. In the latest wave of cyberattacks, ...

In this week's update, four ISMG editors discussed the latest on the ToolShell exploit and the rise of Warlock ransomware, ...

"A leak happened here somewhere," Dustin Childs, head of threat awareness at Trend Micro's Zero Day Initiative (ZDI), told ...

A new SharePoint exploit bypassed Microsoft’s patch, exposing over 8,000 systems and revealing deep flaws in on-premise ...

Proofpoint observed campaigns impersonating trusted brands like SharePoint and DocuSign with malicious OAuth applications to ...

Too many threats, too much data, and too few skilled security analysts are making companies more vulnerable to cyberattacks, ...

The ongoing campaign, first detected in early 2025, is designed to use the OAuth applications as a gateway to obtain ...