News

Again? Microsoft hit for poor security in major SharePoint hack
The company has been called out repeatedly for inadequate security practices, and now we have another case in point: a ...
More than 90 state, local governments targeted using Microsoft SharePoint vulnerability, group says
More than 90 state and local governments have been targeted using the recently revealed vulnerability in Microsoft server ...
macOS Spotlight Vulnerability Discovered by Microsoft
Microsoft Threat Intelligence found a Spotlight-related vulnerability that could allow attackers to steal private file data, ...
Microsoft now pays up to $40,000 for some .NET vulnerabilities
Microsoft has expanded its .NET bug bounty program and increased rewards to $40,000 for some .NET and ASP.NET Core ...
‘Sploitlight’ Vulnerability: How Hackers Bypassed Apple’s TCC Protections
Unpatched Apple devices remain exposed to Sploitlight, a macOS flaw that allows unauthorized access to private user data ...
Microsoft4d
Sploitlight: Analyzing a Spotlight-based macOS TCC vulnerability
Microsoft Threat Intelligence has discovered a macOS vulnerability, tracked as CVE-2025-31199, that could allow attackers to ...
Security Boulevard2d
Response to CISA Alert: Microsoft Releases Guidance on Exploitation of SharePoint Vulnerabilities
AttackIQ has released a new emulation that compiles the Tactics, Techniques, and Procedures (TTPs) associated with the ...
Microsoft Used China-Based Engineers to Support Product Recently Hacked by China
Microsoft announced that Chinese state-sponsored hackers had exploited vulnerabilities in its popular SharePoint software but ...
Microsoft calls out Apple Intelligence AI security flaw which could have let hackers steal private data
The bug, tracked as CVE-2025-31199, could allow hackers to access files in the Downloads folder, as well as caches utilized ...
Techopedia1d
Microsoft SharePoint Attack: Patch Fatigue or Failure of Legacy Systems?
A new SharePoint exploit bypassed Microsoft’s patch, exposing over 8,000 systems and revealing deep flaws in on-premise ...
Microsoft: macOS Sploitlight flaw leaks Apple Intelligence data
Attackers could use a recently patched macOS vulnerability to bypass Transparency, Consent, and Control (TCC) security checks ...
US intelligence uses Microsoft Exchange zero-day vulnerabilities to attack Chinese military-industrial enterprise's email servers: report
VCG. The Cyber Security Association of China on Friday released two cases regarding the frequent cyberattacks and espionage ...