Chinese cyber spies among those linked to SharePoint attacks
An as-yet unnamed Chinese state threat actor appears to be among those exploiting CVE-2025-53770 (aka ToolShell), a remote code execution vulnerability in Microsoft SharePoint, to conduct…
An as-yet unnamed Chinese state threat actor appears to be among those exploiting CVE-2025-53770 (aka ToolShell), a remote code execution vulnerability in Microsoft SharePoint, to conduct…
The rise of clandestine “travel agencies” on darknet forums has reshaped the cyber-crime landscape, morphing traditional card-skimming into a full-fledged service economy that sells half-priced…
APT39, a hacker collective connected to Iran’s Ministry of Intelligence and Security (MOIS), was exposed as operating through the compromised internal systems of the Iranian…
Microsoft’s critical new update reveals that specific Chinese nation-state threat groups are actively exploiting vulnerabilities in its on-premises SharePoint servers. Following an earlier report from…
Jul 22, 2025Ravie LakshmananVulnerability / Threat Intelligence Microsoft has formally tied the exploitation of security flaws in internet-facing SharePoint Server instances to two Chinese hacking…
Critical National Infrastructure (CNI) lies at the heart of modern society, powering essential systems vital for daily life. Yet, it has become an attractive target…
SharePoint under fire: new ToolShell attacks target enterprises Pierluigi Paganini July 22, 2025 While SentinelOne did not attribute the attack to a specific threat actor,…
Dive Brief: Ransomware attacks against schools, colleges and universities rose 23% year over year in the first half of 2025, according to a report from…
Quality threat intelligence has traditionally been the domain of enterprise-level budgets and premium subscriptions. The kind of fresh, actionable data that transforms how SOCs operate…
The well-known npm package eslint-config-prettier was released without authorization, according to several GitHub users, even though its repository did not contain any corresponding code changes.…
Microsoft has revealed that Chinese state threat actors are actively targeting and exploiting a highly-dangerous new zero-day vulnerability in SharePoint Server, confirming earlier reports from…
Microsoft on Tuesday said it has identified two experienced Chinese government-backed threat groups exploiting a recently disclosed vulnerability in its SharePoint servers. The groups, which…