Pastebin comments push ClickFix JavaScript attack to hijack crypto swaps

Threat actors are abusing Pastebin comments to distribute a new ClickFix-style attack that tricks cryptocurrency users into ...
Computerworld

Again? Microsoft hit for poor security in major SharePoint hack

The company has been called out repeatedly for inadequate security practices, and now we have another case in point: a successful SharePoint hack that’s among the worst in Microsoft’s history. Once ...
CBS News

DHS and HHS among federal agencies hacked in Microsoft SharePoint breach

Moderator, "Face the Nation with Margaret Brennan;" Chief foreign affairs correspondent Margaret Brennan is moderator of "Face the Nation with Margaret Brennan" on CBS. Based in Washington, D.C., ...
Channel NewsAsia Singapore

Microsoft says some SharePoint server hackers now using ransomware

WASHINGTON :A cyber-espionage campaign centered on vulnerable versions of Microsoft's server software now involves the deployment of ransomware, Microsoft said in a late Wednesday blog post. In the ...
The Guardian

US nuclear weapons agency ‘among 400 organisations breached by Chinese hackers’

Microsoft says vulnerabilities in its SharePoint servers exposed as reports point to wave of attacks Microsoft says Chinese “threat actors”, including state-sponsored hackers, have exploited security ...
Forbes

The Wiretap: Chinese Hackers Exploit Microsoft Sharepoint 0-Day, Google Warns

The Wiretap is your weekly digest of cybersecurity, internet privacy and surveillance news. To get it in your inbox, subscribe here. Carmakal didn’t offer much details on which Chinese hackers were ...
NBC News

Chinese hackers race to target Microsoft SharePoint vulnerability, tech giants say

A newly discovered critical flaw in Microsoft’s SharePoint platform has spurred a mad frenzy from hackers — including some working for the Chinese government, Google and Microsoft say. The identities ...
Computer Weekly

Patch ToolShell SharePoint zero-day immediately, says Microsoft

Organisations running on-premise instances of Microsoft’s SharePoint collaboration and document management platform should update without delay after multiple reports of an as-yet unidentified party ...
TechCrunch

New zero-day bug in Microsoft SharePoint under widespread attack

The U.S. federal government and cybersecurity researchers say a newly discovered security bug found in Microsoft’s SharePoint is under attack. U.S. cybersecurity agency CISA sounded the alarm this ...
The Verge

Microsoft SharePoint servers are under attack because of a major security flaw

Government agencies and thousands of companies could be affected by the zero-day breach. Government agencies and thousands of companies could be affected by the zero-day breach. is a news writer ...
Dark Reading

Microsoft Rushes Emergency Patch for Actively Exploited SharePoint 'ToolShell' Bug

Microsoft released updates today to patch a critical zero-day flaw in Microsoft SharePoint Server that attackers already have been hammering in an ongoing wave of attacks against US federal and state ...
Digit

Hackers target Microsoft SharePoint again with critical zero-days, over 85 servers hit

Microsoft SharePoint is once again under active attack, with two new zero-day vulnerabilities being exploited in the wild. Tracked as CVE-2025-53770 and CVE-2025-53771, these flaws have been used to ...