Zero-day exploits are the ghosts in the machine, silent, invisible, and devastating when they finally make themselves known.

The name was coined by Dinh Ho Anh, a researcher from Khoa of Viettel Cyber Security, who developed the exploit. The ...

Storm-2603 exploits SharePoint flaws to deploy Warlock ransomware, affecting 400+ victims. Microsoft urges mitigation.

Wiz believes the active campaign is part of a broader crypto-scam infrastructure, which uses a wide range of exploitation ...

CISA flags Microsoft SharePoint flaws under active attack by Chinese hackers. U.S. agencies must patch by July 23 ...

Hackers are exploiting a zero-day vulnerability in CrushFTP to gain administrative privileges on vulnerable servers via HTTPS ...

Microsoft said Chinese actor Storm-2603 is deploying Warlock ransomware following the exploitation of vulnerabilities in ...

Microsoft confirms Chinese hackers exploited a SharePoint flaw; Patches now available. Cloud-based Microsoft 365 not affected ...

Microsoft warns of active attacks by Chinese hackers exploiting SharePoint flaws CVE-2025-49706 and CVE-2025-49704, urging urgent patching and mitigation steps.

A new variant of the Coyote malware is leveraging Microsoft's UI Automation framework to steal banking and cryptocurrency information, according to cybersecurity firm Akamai.

Hackers use OneNote to deliver embedded malware or credential‑stealing links, all concealed beneath innocuous-looking surfaces.

Microsoft Corp. has determined that China-linked hacking groups are targeting deployments of its SharePoint file sharing ...