News

Palo Alto Networks investigating ransomware threat related to SharePoint exploitation
Researchers from Palo Alto Networks say they are investigating a ransomware attack related to the recently disclosed ...
The Hacker News1d
Storm-2603 Deploys DNS-Controlled Backdoor in Warlock and LockBit Ransomware Attacks
The activity has been attributed to Storm-2603, which, according to Microsoft, is a suspected China-based threat actor that ...
SecurityWeek1d
In Other News: Microsoft Probes ToolShell Leak, Port Cybersecurity, Raspberry Pi ATM Hack
Microsoft investigates whether the ToolShell exploit was leaked via MAPP, port cybersecurity, physical backdoor used for ATM ...
SharePoint-ageddon attacks riddled with free Warlock ransomware - and thousands of services could be compromised
One strain in circulation is said to be the “Warlock” ransomware, distributed freely within compromised environments. The pattern of chained exploits, combining the newer CVEs with older ones like CVE ...
Techopedia2d
Microsoft SharePoint Attack: Patch Fatigue or Failure of Legacy Systems?
A new SharePoint exploit bypassed Microsoft’s patch, exposing over 8,000 systems and revealing deep flaws in on-premise ...
Axios on MSN4d
Ransomware gangs are hunting Microsoft SharePoint hack victims
Ransomware gangs are on the hunt for organizations that have yet to patch their vulnerable Microsoft SharePoint servers. Why ...
DataBreachToday5d
SharePoint Zero-Days Exploited to Unleash Warlock Ransomware
Nearly 150 different organizations' on-premises SharePoint servers have been exploited by attackers targeting the zero-day ...
Microsoft spotlights Apple bug patched in March as SharePoint exploits continue
Sploitlight turns these plugins into a Transparency, Consent, and Control (TCC) bypass. TCC is a macOS security framework ...
The Hacker News4d
Chaos RaaS Emerges After BlackSuit Takedown, Demanding $300K from U.S. Victims
Chaos ransomware rises after BlackSuit takedown, hitting U.S. targets with $300K demands and stealthy evasion tactics.
CSO Online1d
Cybercrooks faked Microsoft OAuth apps for MFA phishing
Proofpoint observed campaigns impersonating trusted brands like SharePoint and DocuSign with malicious OAuth applications to ...
Microsoft Used China-Based Engineers to Support Product Recently Hacked by China
Microsoft announced that Chinese state-sponsored hackers had exploited vulnerabilities in its popular SharePoint software but ...
Microsoft says some SharePoint server hackers now using ransomware
A cyber-espionage campaign centered on vulnerable versions of Microsoft's server software now involves the deployment of ransomware, Microsoft said in a late Wednesday blog post.