Storm-2603, a China-linked cyber-espionage group, exploited a zero-day in Microsoft SharePoint Server (Toolshell) and by July 23 had breached at least 400 organizations, including DHS, DOE’s NNSA, the Department of Education, and NIH, with some hacked servers later seeded with LockBit and Warlock ransomware. The FBI, CISA, HHS, and MS-ISAC issued a joint alert about…
Read more