Microsoft SharePoint vulnerability is proving incredibly attractive to hackers New estimates place the number of organizations affected at 400 The hackers have deployed ransomware against some affected organizations New estimates regarding the recently-exploited Microsoft SharePoint vulnerabilities now evaluate that as many as 400 organizations may have been targeted. The figure is a sharp increase from...Read More
The FBI released a warning on Wednesday about a loosely-organized cybercriminal organization known as The Com that is launching cyberattacks to steal money and gain access to sensitive information. The agency released three bulletins about the group — which is composed primarily of English-speaking minors but has expanded to include thousands of people who engage...Read More
By Raphael Satter WASHINGTON (Reuters) -A cyber-espionage campaign centered on vulnerable versions of Microsoft’s server software now involves the deployment of ransomware, Microsoft said in a late Wednesday blog post. In the post, citing “expanded analysis and threat intelligence,” Microsoft said a group it dubs “Storm-2603” is using the vulnerability to seed the...Read More
A global hacking campaign is exploiting a critical zero-day flaw (CVE-2025-53770) in Microsoft’s on-premise SharePoint software, with attacks escalating from espionage to ransomware. First detected around July 7, the breach has impacted over 400 organizations, including the U.S. Department of Homeland Security. The attackers steal cryptographic server keys to gain persistent control. Microsoft released emergency...Read More
The story surrounding the zero-day in Microsoft SharePoint continues to unfold. It is now clear that ransomware attacks have also been carried out. As previously reported, Chinese state actors, or at least hackers with ties to the Chinese government, appear to be behind the attacks. The attacks specifically target unpatched systems and use Warlock ransomware,...Read More
Interlock has been disguising malware as Chrome and Edge installers to spread ransomware through drive-by downloads. US federal authorities have issued a joint warning over a spike in ransomware attacks by the Interlock group, which has been targeting healthcare and public services across North America and Europe. The alert was released by the FBI, CISA,...Read More
WASHINGTON – A cyber-espionage campaign centred on vulnerable versions of Microsoft’s server software now involves the deployment of ransomware, Microsoft said in a blog post on July 23. In the post, citing “expanded analysis and threat intelligence”, Microsoft said a group it dubs Storm-2603 is using the vulnerability to seed the ransomware, which typically works...Read More
Redazione RHC : 24 July 2025 08:13 The UK government has announced preparations for a radical measure to combat cybercrime: a ban on paying ransoms after ransomware attacks. The new ban applies to public sector organizations and critical infrastructure, including local authorities, schools, and the publicly funded National Health Service (NHS). The move comes at a time...Read More
A cyber-espionage campaign exploiting a critical flaw in Microsoft’s SharePoint Server has taken a more disruptive turn. According to a late Wednesday blog post by Microsoft, the attack chain now includes ransomware deployments—a significant escalation from earlier espionage-focused intrusions. The company attributed the latest wave of attacks to a threat group it tracks as “Storm-2603,”...Read More
Disclaimer We strive to uphold the highest ethical standards in all of our reporting and coverage. We StartupNews.fyi want to be transparent with our readers about any potential conflicts of interest that may arise in our work. It’s possible that some of the investors we feature may have connections to other businesses, including competitors or...Read More
