CVE-2025-49704 is a vulnerability tracked across 2 threat clusters and 3 intelligence report mentions on ThreatCluster. First observed October 23, 2025; most recent activity June 23, 2026.
The Warlock ransomware group, also known as Water Manaul, has escalated its attack methods by exploiting unpatched Microsoft SharePoint servers and employing new tactics for persistence and lateral movement. Recent…
Microsoft's DART team discovered two distinct threat actors operating simultaneously within the same victim network, complicating incident response efforts. The investigation began with ransomware activity linked to…