The Hacker News

Microsoft Flags Multi-Stage AitM Phishing and BEC Attacks Targeting Energy Firms

Microsoft reports a multi-stage AitM phishing and BEC campaign abusing SharePoint, inbox rules, and stolen session cookies to ...

Microsoft Patch Tuesday Fixes 112 Flaws, Includes SharePoint and Windows

Microsoft’s January 2026 Patch Tuesday fixes 112 CVEs, including an exploited Windows DWM zero-day, plus critical flaws ...

Crims compromised energy firms' Microsoft accounts, sent 600 phishing emails

Logging in, not breaking in Unknown attackers are abusing Microsoft SharePoint file-sharing services to target multiple ...

Microsoft SharePoint exploited to hack multiple energy firms

Hackers are abusing SharePoint to break into people's emails ...
SecurityWeek

Phishers Abuse SharePoint in New Campaign Targeting Energy Sector

Microsoft warns of a new AitM phishing and BEC campaign targeting the energy sector with SharePoint-hosted malicious payloads ...
Microsoft

Resurgence of a multi‑stage AiTM phishing and BEC campaign abusing SharePoint

Microsoft Defender Researchers uncovered a multi‑stage AiTM phishing and business email compromise (BEC) campaign targeting ...

Microsoft 365 hit by outage, preventing access to emails and files

An hours-long outage is preventing Microsoft's enterprise customers from accessing their inboxes, files, and video meetings.
Bleeping Computer

Latest Microsoft SharePoint news

Hackers believed to be associated with China have leveraged the ToolShell vulnerability (CVE-2025-53770) in Microsoft SharePoint in attacks targeting government agencies, universities, ...
Yahoo

What to know about a vulnerability being exploited on Microsoft SharePoint servers

Add Yahoo as a preferred source to see more of our stories on Google. FILE - The Microsoft company logo is displayed at their offices in Sydney, Australia, on Feb. 3, 2021. (AP Photo/Rick Rycroft, ...