Security News

Darktrace: 96% of Phishing Attacks in 2024 Exploited Trusted Domains Including SharePoint & Zoom Docs

2025-02-19 14:00

The cyber security firm reported in its latest annual report that their researchers found more than 30.4 million phishing emails last year.

#attack #phishing #sharepoint #zoom

Microsoft SharePoint Connector Flaw Could've Enabled Credential Theft Across Power Platform

2025-02-04 04:29

Cybersecurity researchers have disclosed details of a now-patched vulnerability impacting the Microsoft SharePoint connector on Power Platform that, if successfully exploited, could allow threat...

#credential #microsoft #sharepoint

Microsoft 365 outage impacts Exchange Online, Teams, Sharepoint

2024-11-25 15:55

Microsoft is working on fixing an ongoing and widespread Microsoft 365 outage that is impacting multiple services and features, including Exchange Online, Microsoft Teams, and SharePoint Online. [...]

#365 #exchange #microsoft #online #outage #sharepoint #teams

Microsoft SharePoint RCE bug exploited to breach corporate network

2024-11-02 15:19

A recently disclosed Microsoft SharePoint remote code execution (RCE) vulnerability tracked as CVE-2024-38094 is being exploited to gain initial access to corporate networks. [...]

#breach #microsoft #RCE #sharepoint #CVE-2024-38094

Exploited: Cisco, SharePoint, Chrome vulnerabilities

2024-10-25 10:25

Threat actors have been leveraging zero and n-day vulnerabilities in Cisco security appliances (CVE-2024-20481), Microsoft Sharepoint (CVE-2024-38094), and Google’s Chrome browser (CVE-2024-4947)....

#chrome #cisco #sharepoint #vulnerabilities #CVE-2024-20481 #CVE-2024-4947 #CVE-2024-38094

Microsoft SharePoint RCE flaw exploits in the wild – you've had 3 months to patch

2024-10-23 19:30

Plus, a POC to make it extra easy for attackers A Microsoft SharePoint bug that can allow an attacker to remotely inject code into vulnerable versions is under active exploitation, according to...

#exploit #microsoft #patch #RCE #sharepoint

CISA Warns of Active Exploitation of Microsoft SharePoint Vulnerability (CVE-2024-38094)

2024-10-23 12:54

A high-severity flaw impacting Microsoft SharePoint has been added to the Known Exploited Vulnerabilities (KEV) catalog by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) on...

#cisa #CVE #exploitation #microsoft #sharepoint #vulnerability #CVE-2024-38094

New covert SharePoint data exfiltration techniques revealed

2024-04-10 15:01

Varonis Threat Labs researchers have uncovered two techniques attackers can use can use for covert data and file exfiltration from companies' SharePoint server. "These techniques can bypass the detection and enforcement policies of traditional tools, such as cloud access security brokers, data loss prevention, and SIEMs, by hiding downloads as less suspicious access and sync events," they noted.

#exfiltration #sharepoint

New SharePoint flaws help hackers evade detection when stealing files

2024-04-09 13:00

Researchers have discovered two techniques that could enable attackers to bypass audit logs or generate less severe entries when downloading files from SharePoint. Microsoft SharePoint is a web-based collaborative platform that integrates with Microsoft Office and 365, primarily as a document management and data storage system.

#hacker #sharepoint

Patch actively exploited Microsoft SharePoint bug, CISA orders federal agencies (CVE-2023-24955)

2024-03-28 10:20

The Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2023-24955 – a code injection vulnerability that allows authenticated attackers to execute code remotely on a vulnerable...

#cisa #CVE #microsoft #patch #sharepoint #CVE-2023-29357 #CVE-2023-24955

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

Security News