CISA warned on Wednesday that attackers have begun exploiting a high-severity Microsoft SharePoint remote code execution ...
Microsoft's prediction that attackers probably wouldn't rush to exploit a newly-patched SharePoint bug hasn't aged especially ...
CISA warns that attackers are exploiting Microsoft SharePoint vulnerability CVE-2026-45659, a high-severity remote code ...
CISA added CVE-2026-45659 SharePoint Server RCE to KEV following confirmed exploitation, requiring U.S. agencies to patch by ...
CISA added a Microsoft SharePoint RCE flaw to its exploited bugs catalog after confirming active attacks on unpatched servers ...
A security analyst at a large enterprise recently found sensitive HR documents being copied into a Microsoft Teams channel ...
Separate actors exploited the same exposure, creating overlapping intrusions that obscured detection and response.
EvilTokens, the device-code phishing kit that can allow criminals to bypass multi-factor authentication (MFA) and silently authenticate as the victim to the organization's Microsoft 365 applications, ...
This sneaky attack tricks Microsoft's AI assistant to hand over your data.
Last Tuesday, Microsoft patched a vulnerability it rated as max critical in its M365 Copilot AI platform. On Monday, the researchers who discovered the vulnerability and reported it to Microsoft ...
Microsoft patched SearchLeak: a critical vulnerability in M365 Copilot that could expose 2FA codes and private data with one click. Here's what happened.
Microsoft previously told Windows Latest that it added jailbreak or root detection (iOS/Android) for work or school accounts ...