Fast Company

The Microsoft SharePoint breach was massive. The response has been minimal

Microsoft disclosed the vulnerability in a blog post over the weekend, clarifying that the issue only affected on-premises SharePoint servers. These are locally hosted instances of the collaboration ...
Krebs on Security

Microsoft Fix Targets Attacks on SharePoint Zero-Day

On Sunday, July 20, Microsoft Corp. issued an emergency security update for a vulnerability in SharePoint Server that is actively being exploited to compromise vulnerable organizations. The patch ...
TechCrunch

Hundreds of organizations breached by SharePoint mass-hacks

Security researchers say hackers have breached at least 400 organizations by exploiting a zero-day vulnerability in Microsoft SharePoint, signaling a sharp rise in the number of detected compromises ...
ABC News

Microsoft SharePoint under 'active exploitation,' Homeland Security's CISA says

The FBI is "aware of the matter," the bureau said. The Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) has posted an alert saying it is aware of "active ...
Neowin

Hackers actively exploiting unpatched Microsoft SharePoint vulnerability CVE-2025-537700 0

Over the last weekend, numerous cybersecurity agencies revealed new cybersecurity attacks targeting on-premises SharePoint Server customers by exploiting unpatched vulnerabilities. The CVE-2025-53770, ...
CBS News

DHS and HHS among federal agencies hacked in Microsoft SharePoint breach

Moderator, "Face the Nation with Margaret Brennan;" Chief foreign affairs correspondent Margaret Brennan is moderator of "Face the Nation with Margaret Brennan" on CBS. Based in Washington, D.C., ...
PC Magazine

Mass Exploitation: Hackers Hit Zero-Day Flaw in Microsoft's SharePoint

The newly discovered flaw in Microsoft's SharePoint software has allowed hackers to target dozens of companies and organizations. Only a partial fix has been issued. Yikes: Hackers are exploiting a ...
CNN

Microsoft alerts businesses and governments to attacks on SharePoint servers

Microsoft has issued an alert about “active attacks” on server software used by government agencies and businesses to share documents within organizations and recommended security updates that ...
New York Post

Microsoft SharePoint server hack likely caused by single actor — and thousands of firms now vulnerable: researchers

A sweeping cyberespionage operation targeting Microsoft server software compromised about 100 different organizations as of the weekend, one of the researchers who helped uncover the campaign said ...
Bleeping Computer

Microsoft SharePoint zero-day exploited in RCE attacks, no patch available

Update 7/21/25: Added links to the security updates for Microsoft SharePoint 2019. Critical zero-day vulnerabilities in Microsoft SharePoint, tracked as CVE-2025-53770 and CVE-2025-53771, have been ...
Computerworld

What you need to know about linking to files and pages in SharePoint

SharePoint Online has some great capabilities when it comes to creating "durable" links to files. But, it turns out that the type of file and the type of link and your browser can deliver different ...