Warlock Ransomware Is Exploiting SharePoint “ToolShell” — What Every Defender Needs to Know Now
If your organization runs SharePoint on‑prem, stop what you’re doing and check your patch status. A new ransomware crew, Warlock, is riding a SharePoint exploit chain dubbed “ToolShell” to hit victims across North America, Europe, Asia, and Africa—moving from initial access to full-blown ransomware and data theft in hours. Here’s the headline: attackers are chaining…