A top security researcher claims the massive SharePoint zero-day attack was fueled by a leak from a Microsoft partner program, giving hackers a critical head start.

Microsoft Corp. is investigating its early alert system leak, to analyze any exploitation done by the Chinese hackers.

Microsoft is investigating whether a leak from its early alert system for cybersecurity companies allowed Chinese hackers to ...

A program to share information with cybersecurity companies may have exposed unpatched flaws in the company’s SharePoint ...

Microsoft says it will no longer use China-based engineers to support the Pentagon. But ProPublica found that the tech giant ...

Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code ...

Researcher Khoa Dinh originally discovered the attack chain, and earlier this month, Code White GmbH was able to reproduce ...

Moving from a reactionary to a proactive strategy should be every CISO's goal. The earlier you can actively defend against a ...

Employees at the National Science Foundation are pushing back against the Trump administration’s actions at the agency. Nearly 150 NSF employees signed a letter of dissent this week. They’re ...

The path to a worldwide hacking campaign began with a contest for cash and a free laptop.

Cleaning products manufacturer Clorox fell victim to a Scattered Spider social engineering attack two years ago – it blames ...

Microsoft confirms Chinese hackers exploited a SharePoint flaw; Patches now available. Cloud-based Microsoft 365 not affected ...