The Hacker News

⚡ Weekly Recap: Bootkit Malware, AI-Powered Attacks, Supply Chain Breaches, Zero-Days & More

Your weekly strategic brief on the cyber threat landscape. Uncover the deeper patterns behind attacks, from bootkit malware ...
theregister

Microsoft patch Tuesday update fails to install

Microsoft has admitted that the August patch Tuesday update might fail to install through Windows Server Update Services (WSUS), but it's ok, admins. Home users are "unlikely to experience this issue.
theregister

CISA releases malware analysis for Sharepoint Server attack

CISA has published a malware analysis report with compromise indicators and Sigma rules for "ToolShell" attacks targeting specific Microsoft SharePoint Server versions. "Cyber threat actors have ...
Techopedia

Microsoft SharePoint Attack: Patch Fatigue or Failure of Legacy Systems?

Alexandra is a Senior Content Editor at Techopedia with 10+ years of experience in covering tech, finance, and crypto industries. Previously, Alex served as a… The past few weeks have been very ...
The Verge

OpenAI prepares to launch GPT-5 in August

OpenAI’s open language model is still arriving ahead of GPT-5. OpenAI’s open language model is still arriving ahead of GPT-5.
WeLiveSecurity

ToolShell: An all-you-can-eat buffet for threat actors

Figure 2 shows the timeline of the attacks coming from the three most active IP addresses. Figure 2. Attacks from the most active IP addresses seen per hour (zero values not shown) Concerningly, ...
Yahoo

Microsoft Urges Emergency Patching as SharePoint Servers Come Under Attack

Chinese hackers have targeted Microsoft on-premises SharePoint servers. Hackers are at it again. This time, they've attacked on-premises Microsoft SharePoint servers. SharePoint Online is not impacted ...
winbuzzer.com

Mandiant: China-Linked Hackers Behind Recent Microsoft SharePoint Zero-Day Attacks

Google’s Mandiant has linked a China-nexus hacking group to the initial wave of global attacks exploiting a critical Microsoft SharePoint vulnerability. The exploit chain, dubbed “ToolShell” (CVE-2025 ...
Hosted on MSN

Microsoft SharePoint Under Attack, Thousands of Servers Hit; Firm Issues Security Patch

Microsoft has warned its business clients about serious security threats that could have an immediate impact on their server systems. The threat is linked to the SharePoint servers running via ...
techbooky.com

SharePoint Zero-day Persists Despite Microsoft Patches

Microsoft’s emergency fixes have not stemmed the “ToolShell” tide. The critical SharePoint zero‑day (CVE‑2025‑53770, CVSS 9.8) is still being weaponised to plant a tiny ASPX back‑door on unpatched ...
Microsoft

Disrupting active exploitation of on-premises SharePoint vulnerabilities

July 23, 2025 update – Expanded analysis and threat intelligence from our continued monitoring of exploitation activity by Storm-2603 leading to the deployment of Warlock ransomware. Based on new ...