sharepoint

Microsoft’s April Security Update of High-Risk Vulnerability Notice for Multiple Products

| | Blog, Emergency Response, Microsoft, Microsoft vulnerabilities, sharepoint
Overview On April 15, NSFOCUS CERT detected that Microsoft released the April Security Update patch, fixing 165 security issues involving Windows, Microsoft Office, Microsoft SQL Server, Microsoft Visual Studio, Microsoft .NET Framework, ...
NSFOCUS
CVE-2026-20963: SharePoint Deserialization RCE Vulnerability

CVE-2026-20963: SharePoint Deserialization Remote Code Execution Vulnerability

| | AppTrana WAAP, CVE-2026-20963, rce, security bulletin, sharepoint
Microsoft SharePoint, a core platform for enterprise collaboration, is facing active exploitation through a newly confirmed vulnerability, tracked as CVE-2026-20963. Rooted in unsafe deserialization of user-controlled data, this vulnerability allows remote. The post ...
Indusface
AI, Leaks, and Cyber Espionage – What Microsoft Isn’t Saying #podcast

Leaked, Patched, and Still Hacked: The SharePoint Zero-Day Crisis

| | black hat, Cloud Security, Cyber Security, cyber threat, Cybersecurity, Data breach, Data Privacy, defcon, Digital Privacy, Episodes, Espionage, government, Information Security, Infosec, MAPP, Microsoft, patch, Penetration Testing, Permissions, Podcast, Podcasts, Privacy, Ransomware, security, Security Conference, sharepoint, technology, US Agencies, Vegas, vulnerability, Weekly Edition, zero-day
This week we explore the recent Microsoft SharePoint vulnerability that has led to widespread exploitation by ransomware gangs and Chinese State-sponsored hackers. We also cover the confirmed compromise of multiple US agencies, ...
Shared Security Podcast
Response to CISA Alert: Microsoft Releases Guidance on Exploitation of SharePoint Vulnerabilities

Response to CISA Alert: Microsoft Releases Guidance on Exploitation of SharePoint Vulnerabilities

| | Broad-Based Attacks, cisa, CISA Alert, Microsoft, sharepoint
AttackIQ has released a new emulation that compiles the Tactics, Techniques, and Procedures (TTPs) associated with the exploitation of the CVE-2025-49704, CVE-2025-49706, CVE-2025-53770, and CVE-2025-53771 vulnerabilities, which affect on-premises Microsoft SharePoint servers ...
AttackIQ

CISA SharePoint Vulnerability Warning: RCE Flaw Exploited

| | Attack sequence, Authentication protocols, cisa, Common Vulnerability Scoring System (CVSS), CVE-2023-24955, Cyber Threats, Cybersecurity Measures, Cybersecurity News, Cybersecurity updates, federal agencies, Known Exploited Vulnerabilities (KEV), Microsoft, Network Security, patch management, Proactive defense, Remote Code Execution (RCE), Security Strategies, sharepoint, threat actors, Vulnerability warning
In light of recent cyber threats, a CISA SharePoint vulnerability warning has been issued. According to media reports, threat actors are exploiting the remote code execution flaw to launch arbitrary code, which ...
TuxCare
Microsoft Patches Six Zero-Day Security Holes

Microsoft Patches Six Zero-Day Security Holes

| | adobe, Automox, Christopher Hass, CVE-2021-28550, CVE-2021-31199, CVE-2021-31201, CVE-2021-31955, CVE-2021-31956, CVE-2021-31959, CVE-2021-31963, CVE-2021-33739, CVE-2021-33742, Immersive Labs, Kevin Breen, Microsoft, Microsoft Patch Tuesday June 2021, sharepoint, Time to Patch, Windows
Microsoft today released another round of security updates for Windows operating systems and supported software, including fixes for six zero-day bugs that malicious hackers already are exploiting in active attacks ...
Krebs on Security
Phishers Using Fake Sharepoint Messages to Target Office 365 Details

Phishers Using Fake Sharepoint Messages to Target Office 365 Details

| | IT Security and Data Protection, Latest Security News, office 365, Phishing, sharepoint
Phishers leveraged fake automated messages from collaborative platform Sharepoint as a means to target users’ Office 365 credentials. Abnormal Security found that the phishing campaign began with an attack email that appeared ...
The State of Security
‘Wormable’ Flaw Leads July Microsoft Patches

‘Wormable’ Flaw Leads July Microsoft Patches

| | .NET Framework, CVE-2020-1350, CVE-2020-1410, CVE-2020-1421, CVE-2020-1435, CVE-2020-1436, CVE-2020-1463, Internet Exploder, Microsoft Patch Tuesday July 2020, office, Recorded Future, sharepoint, Time to Patch, visual studio
Microsoft today released updates to plug a whopping 123 security holes in Windows and related software, including fixes for a critical, "wormable" flaw in Windows Server versions that Microsoft says is likely ...
Krebs on Security
Phishing Campaign Targets FINRA in Search for Microsoft Office or SharePoint Credentials

Phishing Campaign Targets FINRA in Search for Microsoft Office or SharePoint Credentials

| | FINRA, Industry News, Microsoft Office, passwords, Phishing, sharepoint, SpearPhishing
A new phishing campaign is targeting members of Financial Industry Regulatory Authority (FINRA), with emails purporting to be from FINRA officers. The goal is to obtain the members’ user names and passwords ...
HOTforSecurity
Phishing Campaign Used SharePoint to Bypass Email Perimeter Tech

Phishing Campaign Used SharePoint to Bypass Email Perimeter Tech

| | IT Security and Data Protection, Latest Security News, perimeter, Phishing, sharepoint
Security researchers spotted a phishing campaign that used SharePoint to bypass email gateway and other perimeter technologies. Cofense learned of the campaign after it analyzed an attack email sent from a compromised ...
The State of Security
Load more