Microsoft’s January 2026 Patch Tuesday fixes 112 CVEs, including an exploited Windows DWM zero-day, plus critical flaws across SharePoint, Office, and Windows services.

SharePoint’s cloud-based platform remains unaffected, with the vulnerabilities limited to on-premises installations, Microsoft said. Microsoft has published emergency security patches to protect users ...

Hackers believed to be associated with China have leveraged the ToolShell vulnerability (CVE-2025-53770) in Microsoft SharePoint in attacks targeting government agencies, universities, ...

NEW YORK (AP) — Microsoft has issued an emergency fix to close off a vulnerability in Microsoft’s widely-used SharePoint software that hackers have exploited to carry out widespread attacks on ...

An hours-long outage is preventing Microsoft's enterprise customers from accessing their inboxes, files, and video meetings.

Microsoft Defender Researchers uncovered a multi‑stage AiTM phishing and business email compromise (BEC) campaign targeting ...

Add Yahoo as a preferred source to see more of our stories on Google. FILE - The Microsoft company logo is displayed at their offices in Sydney, Australia, on Feb. 3, 2021. (AP Photo/Rick Rycroft, ...

Two weeks after launch, 91% of people had confirmed that they had completed the training. That level of visibility ...

Microsoft SharePoint Flaw Is Being Abused to Spread Ransomware It's not just data theft. A China-based hacking group is using a flaw in vulnerable SharePoint servers to deliver ransomware, Microsoft ...