SharePoint Archives - Help Net Security

SharePoint

June 2023 Patch Tuesday: Critical patches for Microsoft Windows, SharePoint, Exchange

June 13, 2023

For June 2023 Patch Tuesday, Microsoft has delivered 70 new patches but, for once, none of the fixed vulnerabilities are currently exploited by attackers nor were publicly …

Microsoft fixes two actively exploited bugs, one used by BlackLotus bootkit (CVE-2023-29336, CVE-2023-24932)

May 9, 2023

For May 2023 Patch Tuesday, Microsoft has delivered fixes for 38 CVE-numbered vulnerabilities, including a patch for a Windows bug (CVE-2023-29336) and a Secure Boot bypass …

PoC exploit for recently patched Microsoft Word RCE is public (CVE-2023-21716)

March 6, 2023

A PoC exploit for CVE-2023-21716, a critical RCE vulnerability in Microsoft Word that can be exploited when the user previews a specially crafted RTF document, is now publicly …

While governments pass privacy laws, companies struggle to change

February 6, 2023

Government agencies keep making new privacy rules while end users fall victim to malpractice and scams. Bill Tolson, VP of Compliance and eDiscovery at Archive360, has spent …

Microsoft plugs actively exploited zero-day hole (CVE-2023-21674)

January 10, 2023

To mark the January 2023 Patch Tuesday, Microsoft has released patches for 98 CVE-numbered vulnerabilities, including one exploited in the wild (CVE-2023-21674) and one …

Microsoft fixes exploited zero-day, revokes certificate used to sign malicious drivers (CVE-2022-44698)

December 13, 2022

It’s December 2022 Patch Tuesday, and Microsoft has delivered fixes for 50+ vulnerabilities, including a Windows SmartScreen bypass flaw (CVE-2022-44698) exploited by …

Microsoft patches Windows flaw exploited in the wild (CVE-2022-41033)

October 11, 2022

October 2022 Patch Tuesday is here, with fixes for 85 CVE-numbered vulnerabilities, including CVE-2022-41033, a vulnerability in Windows COM+ Event System Service that has …

August 2022 Patch Tuesday forecast: Printers again?

August 5, 2022

July 2022 Patch Tuesday came and went quietly as expected. Microsoft addressed 40 CVEs in Windows 11 and 46 CVEs in the Windows 10 set of updates. It was a little unusual …

Microsoft asks bug hunters to probe on-premises Exchange, SharePoint servers

April 6, 2022

Bug hunters that discover and report high-impact security vulnerabilities in on-premises Exchange, SharePoint and Skype for Business may earn as much as $26,000 per eligible …

BitTitan Migration Discovery Solution offers tenant-to-tenant migration assessments for MSPs

October 19, 2021

BitTitan launched its comprehensive Migration Discovery Solution that allows IT service professionals and managed service providers (MSPs) to conduct detailed, non-invasive …

Datto SaaS Defense protects cloud-based applications for MSPs

October 15, 2021

Following its acquisition of Israel-based cyber threat detection company BitDam earlier this year, Datto debuted its SaaS Defense security product built exclusively for MSPs. …

SnapLogic Flows enables non-technical business teams to build integrations and automations

September 18, 2021

SnapLogic released the latest version of its SnapLogic Flows solution. SnapLogic Flows allows teams in departments such as sales, marketing, finance, and HR to build new …

SharePoint

June 2023 Patch Tuesday: Critical patches for Microsoft Windows, SharePoint, Exchange

Microsoft fixes two actively exploited bugs, one used by BlackLotus bootkit (CVE-2023-29336, CVE-2023-24932)

PoC exploit for recently patched Microsoft Word RCE is public (CVE-2023-21716)

While governments pass privacy laws, companies struggle to change

Microsoft plugs actively exploited zero-day hole (CVE-2023-21674)

Microsoft fixes exploited zero-day, revokes certificate used to sign malicious drivers (CVE-2022-44698)

Microsoft patches Windows flaw exploited in the wild (CVE-2022-41033)

August 2022 Patch Tuesday forecast: Printers again?

Microsoft asks bug hunters to probe on-premises Exchange, SharePoint servers

BitTitan Migration Discovery Solution offers tenant-to-tenant migration assessments for MSPs

Datto SaaS Defense protects cloud-based applications for MSPs

SnapLogic Flows enables non-technical business teams to build integrations and automations

Don't miss

Backdoored Android phones, TVs used for ad fraud – and worse!

Qualcomm patches 3 actively exploited zero-days

Google unveils stricter anti-spam rules for bulk email senders

Cybertech Europe 2023 video walkthrough

Amazon: AWS root accounts must have MFA enabled