Márk Fülöp
SharePoint Server Critical Vulnerabilities

SharePoint Server Critical Vulnerabilities

We would like to inform you about the following two critical vulnerabilities affecting SharePoint Server (2016, 2019, SE releases), which allow attackers to use a so-called "ToolShell" attack that provides unauthenticated access to systems and enables malicious actors...

Advanced phishing with legitimate emails

Advanced phishing with legitimate emails

Phishing attacks have evolved, targeting collaborative cloud platforms to bypass conventional email security measures. Microsoft SharePoint and OneNote have become prominent tools for these sophisticated attacks. As email protection solutions advance, so do the...

Your MFA solution is unsafe (most likely)

Your MFA solution is unsafe (most likely)

SMS and One Time Passcodes Having any MFA is better than relying on passwords alone, but weak or poorly implemented MFA can still leave organizations vulnerable to attacks. Push and mobile-based one-time passcodes are becoming more and more vulnerable to attacks. With...