CISA orders feds to patch Windows flaw exploited as zero-day

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to secure their Windows systems ...
Forbes

Critical Zero-Day Exposes FTP Servers To Attack

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Some weeks start better than others. If you are a member of an ...
SecurityWeek

Recent Microsoft Defender Vulnerability Exploited as Zero-Day

Threat actors have been exploiting the BlueHammer Microsoft Defender vulnerability as a zero-day to gain System privileges.

Angry Hacker Drops Microsoft Zero-Day Exploit, 1 Billion Users Warned

A security researcher frustrated with Microsoft has released the BlueHammer Windows zero-day exploit, telling the company, “I ...
Bleeping Computer

Oracle silently fixes zero-day exploit leaked by ShinyHunters

Oracle has silently fixed an Oracle E-Business Suite vulnerability (CVE-2025-61884) that was actively exploited to breach servers, with a proof-of-concept exploit publicly leaked by the ShinyHunters ...
Hosted on MSN

Critical SharePoint zero-day exploited as 1,300+ servers remain exposed

A newly disclosed SharePoint zero-day vulnerability, CVE-2026-32201, is being actively exploited, enabling remote code execution without authentication or user interaction. CISA has added it to its ...
CSOonline

Zero-day exploits hit enterprises faster and harder

Chinese state hackers and spyware vendors are fueling a rise in zero-day attacks, which increasingly target enterprise software and devices — security and networking products in particular. Google ...
SiliconANGLE

Researchers discover zero-day DarkSword exploit chain in iOS 18

Researchers from Google LLC and two cybersecurity companies have identified a set of zero-day exploits in iOS 18. Google’s GTIG threat intelligence team, Lookout Inc. and iVerify Inc. published their ...
Dark Reading

Attackers Exploit Critical Trend Micro Apex One Zero-Day Flaw

Trend Micro has identified two critical zero-day vulnerabilities in the management console for multiple enterprise endpoint security products, one of which is under active exploitation. The command ...
Android

'Dante' Malware reportedly targeted Chrome users through zero-day exploit

Cybersecurity firm Kaspersky has detailed more of its findings on the distribution of malware through a zero-day exploit it uncovered in Google Chrome earlier this year. The exploit was executed ...
TechRepublic

Apple Patches Zero-Day Exploit Targeting Google Chrome Users

A zero-day exploit targeted Google Chrome users has been patched by Apple. Their latest updates target a variety of devices and operating systems. Image: MR/Adobe Stock Apple recently issued a round ...

Litecoin gives post-attack update, but other devs doubt zero-day theory

Litecoin, a layer-1 proof-of-work (PoW) blockchain network, was hit by a “zero-day” vulnerability on Saturday, which caused a ...