Microsoft Used China-Based Engineers to Maintain Vulnerable SharePoint

Threat Score:

Techrepublic

6 days ago

Part of cluster #1713

Overview

Microsoft used an engineering team based in China to support SharePoint before its vulnerabilities were patched. The application was exploited by at least three state- Chinese threat groups last month. What is the China connection to the ToolShell SharePoint exploit? An exploit chain for aremote code execution (RCE) attack on on-premises SharePoint serversdubbed ToolShell was first identified at a hacking competition in May; however, Microsoft didn’t put out patches for the vulnerabilities that ...

Continue Reading on Original Site

5 articles

Stop Reacting; Start Anticipating: The Global State of Threat Intelligence

Brighttalk • 9 hours ago

Presented by Jitin Shabadu, Forrester Analyst | Jayce Nichols, Director, Intelligence Solutions, Google Threat Intelligence Group

Score

Linux-Based Lenovo Webcams’ Flaw Can Be Remotely Exploited for BadUSB Attacks

The Hacker News • 5 hours ago

Cybersecurity researchers have disclosed vulnerabilities in select model webcams from Lenovo that could turn them into BadUSB attack devices. "This allows remote attackers to inject keystrokes covertly and launch attacks independent of the host operating system," Eclypsium researchers Paul Asadoorian, Mickey Shkatov, and Jesse Michaelsaidin a report shared with The Hacker News. The vulnerabilities have been codenamed BadCam by the firmware security company. The findings werepresentedat the DEF C

Score

Embargo Ransomware nets $34.2M in crypto since April 2024

Security Affairs • 6 hours ago

Embargo ransomware, likely a BlackCat/Alphv successor, has netted $34.2M in crypto since mid-2024, researchers say. The Embargo ransomware group has processed $34.2M in crypto since emerging in April 2024, researchers from Blockchain intelligence company TRM Labs report. “TRM Labs has identified approximately USD 34.2 million in incoming transaction volume likely associated with the group, with […]

Score

WinRAR Zero-Day CVE-2025-8088 Exploited to Spread RomCom Malware

Hackread • 9 hours ago

Critical WinRAR flaw CVE-2025-8088 exploited by Russia-linked hackers to spread RomCom malware, update to version 7.13 now to…

Score

Google confirms data breach exposed potential Google Ads customers' info

BleepingComputer • 4 hours ago

Google confirms data breach exposed potential Google Ads customers' info Lawrence Abrams August 9, 2025 03:15 PM 0 Google has confirmed that arecently disclosed data breachof one of its Salesforce CRM instances involved the information of potential Google Ads customers. "We're writing to let you know an event that affected a limited set of data in one of Google's corporate Salesforce instances used to communicate with prospective Ads customers," reads a data breach notification shared with Bleep

Score

THREAT HUNTING

THREAT INTELLIGENCE

BUSINESS INTELLIGENCE

Save to Folder

Article Intelligence

THREAT HUNTING

THREAT INTELLIGENCE

BUSINESS INTELLIGENCE

Overview

Related Articles

Stop Reacting; Start Anticipating: The Global State of Threat Intelligence

Linux-Based Lenovo Webcams’ Flaw Can Be Remotely Exploited for BadUSB Attacks

Embargo Ransomware nets $34.2M in crypto since April 2024

WinRAR Zero-Day CVE-2025-8088 Exploited to Spread RomCom Malware

Google confirms data breach exposed potential Google Ads customers' info

Save to Folder

Article Intelligence

We use cookies

Cookie Settings

Essential Cookies

Analytics Cookies

Performance Cookies

Marketing Cookies