Department of Homeland Security headquarters, several of its agencies and the Department of Health and Human Services have been hacked as part of a wider breach of Microsoft SharePoint.​

Multiple hacking groups—including state actors from China—have targeted a vulnerability in older, on-premises versions of the file-sharing tool after a flawed attempt to patch it.

Major cyberattacks in 2025 so far have included the Microsoft SharePoint Server “ToolShell” attacks, the ransomware attack against IT distributor Ingram Micro and a series of Scattered Spider attacks targeting numerous industries.

It’s funny how often the tools we trust most open the back door without us realizing it.Given the fast-evolving cybersecurity landscape, state-sponsored threats have grown more precise and quiet, with even routine enterprise software coming under the microscope.

A severe vulnerability in Microsoft SharePoint has led to data breaches worldwide, including in Finland. Authorities are urging immediate updates to secure systems.

A critical security vulnerability in Microsoft SharePoint has been actively exploited by threat actors to infiltrate thousands of organizations worldwide.

A July 8 fix for a critical SharePoint zero-day failed to stop active exploitation, enabling state-backed attackers to breach nearly 100 organizations worldwide.

A major security vulnerability in Microsoft's widely used Sharepoint server software has been exploited by hackers, causing chaos within businesses and government agencies.

Microsoft issued an emergency fix to close off a vulnerability in its SharePoint software that hackers have exploited to carry out widespread attacks on businesses and at least some federal agencies.