Critical sandbox escape flaw found in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.
Computerworld

Again? Microsoft hit for poor security in major SharePoint hack

The company has been called out repeatedly for inadequate security practices, and now we have another case in point: a successful SharePoint hack that’s among the worst in Microsoft’s history. Once ...
Reuters

Microsoft says some SharePoint server hackers now using ransomware

WASHINGTON, July 23 (Reuters) - A cyber-espionage campaign centered on vulnerable versions of Microsoft's (MSFT.O), opens new tab server software now involves the deployment of ransomware, Microsoft ...
9to5Mac

US agency responsible for nuclear weapons was breached in Sharepoint hack [U]

More than 10,000 organizations around the world are at risk from hackers after a serious security flaw was discovered in Microsoft’s popular Sharepoint platform, used to store and share confidential ...
Reuters

US nuclear weapons agency breached in Microsoft SharePoint hack, Bloomberg News reports

July 22 (Reuters) - U.S. National Nuclear Security Administration was among those breached by a hack of Microsoft's (MSFT.O), opens new tab SharePoint document management software, Bloomberg News ...
Forbes

The Wiretap: Chinese Hackers Exploit Microsoft Sharepoint 0-Day, Google Warns

The Wiretap is your weekly digest of cybersecurity, internet privacy and surveillance news. To get it in your inbox, subscribe here. Carmakal didn’t offer much details on which Chinese hackers were ...
TechCrunch

Google, Microsoft say Chinese hackers are exploiting SharePoint zero-day

Security researchers at Google and Microsoft say they have evidence that hackers backed by China are exploiting a zero-day bug in Microsoft SharePoint, as companies around the world scramble to patch ...
GeekWire

Microsoft grapples with another security breach: The latest on the SharePoint attacks

Microsoft is once again in the cybersecurity spotlight, acknowledging Tuesday morning that hackers linked to China are among those exploiting vulnerabilities in on-premises SharePoint software, the ...
Infosecurity-magazine.com

SharePoint 'ToolShell' Vulnerabilities Exploited by Chinese Nation-State Hackers

Microsoft has confirmed three Chinese-based threat groups have been actively exploiting CVE-2025-53770 and CVE-2025-53771, two critical and high-severity vulnerabilities in internet-facing SharePoint ...
The Independent

US government agencies are under attack in widespread Microsoft hack

From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or ...
TechSpot

Worldwide cyberattack underway as hackers exploit Microsoft SharePoint zero-day vulnerability

A hot potato: A newly uncovered security flaw in Microsoft's SharePoint software has sparked a widespread series of cyberattacks targeting government organizations, educational institutions, energy ...