News

The Hacker News22h
Storm-2603 Deploys DNS-Controlled Backdoor in Warlock and LockBit Ransomware Attacks
The activity has been attributed to Storm-2603, which, according to Microsoft, is a suspected China-based threat actor that ...
GovInfoSecurity22h
ISMG Editors: ToolShell Exploit Blurs Crime and Espionage
In this week's update, four ISMG editors discussed the latest on the ToolShell exploit and the rise of Warlock ransomware, ...
Palo Alto Networks investigating ransomware threat related to SharePoint exploitation
Researchers from Palo Alto Networks say they are investigating a ransomware attack related to the recently disclosed ...
SecurityWeek1d
In Other News: Microsoft Probes ToolShell Leak, Port Cybersecurity, Raspberry Pi ATM Hack
Microsoft investigates whether the ToolShell exploit was leaked via MAPP, port cybersecurity, physical backdoor used for ATM ...
SharePoint-ageddon attacks riddled with free Warlock ransomware - and thousands of services could be compromised
One strain in circulation is said to be the “Warlock” ransomware, distributed freely within compromised environments. The pattern of chained exploits, combining the newer CVEs with older ones like CVE ...
GovInfoSecurity2d
Breach Roundup: Did China Have a Sneak Peak Into ToolShell?
Did China sneak a peak into ToolShell? ToolShell hacking in South Africa. Cisco flaws. Arizona woman sentenced for aiding ...
Techopedia2d
Microsoft SharePoint Attack: Patch Fatigue or Failure of Legacy Systems?
A new SharePoint exploit bypassed Microsoft’s patch, exposing over 8,000 systems and revealing deep flaws in on-premise ...
WeLiveSecurity2d
This month in security with Tony Anscombe – July 2025 edition
ESET Chief Security Evangelist Tony Anscombe looks at cybersecurity stories that moved the needle, raised the alarms, or offered vital lessons in July 2025.
Security Boulevard2d
Response to CISA Alert: Microsoft Releases Guidance on Exploitation of SharePoint Vulnerabilities
AttackIQ has released a new emulation that compiles the Tactics, Techniques, and Procedures (TTPs) associated with the ...
CPO Magazine3d
U.S. Nuclear Agency Breached via ToolShell SharePoint Vulnerability Chain
A U.S. nuclear agency was among the victims of the SharePoint vulnerability chain, which was exploited to compromise over 54 ...
Infosecurity Magazine3d
US Tops Hit List as 396 SharePoint Systems Compromised Globally
A total of 396 compromised Microsoft SharePoint systems have been identified globally, affecting 145 organizations across 41 ...