CISA orders feds to patch Windows flaw exploited as zero-day

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to secure their Windows systems ...
Hosted on MSN

Critical SharePoint zero-day leaves 1,300+ servers exposed

A critical zero-day vulnerability, CVE-2026-32201, is actively being exploited against Microsoft SharePoint servers, with over 1,300 instances still exposed online. The flaw allows remote code ...
Bleeping Computer

Hackers exploit 29 zero-days on second day of Pwn2Own Automotive

On the second day of Pwn2Own Automotive 2026, security researchers collected $439,250 in cash awards after exploiting 29 unique zero-days. The Pwn2Own Automotive hacking contest focuses on automotive ...

Angry Hacker Drops Microsoft Zero-Day Exploit, 1 Billion Users Warned

A security researcher frustrated with Microsoft has released the BlueHammer Windows zero-day exploit, telling the company, “I ...
Forbes

The WhatsApp $1 Million Hack Mystery — What You Need To Know

$1 million WhatsApp hack at Pwn2Own Ireland confirmed. October 23 should stick in the memory of smartphone users for some time to come. This is the day that the Samsung Galaxy S25 was hacked, ...
SiliconANGLE

Researchers discover zero-day DarkSword exploit chain in iOS 18

Researchers from Google LLC and two cybersecurity companies have identified a set of zero-day exploits in iOS 18. Google’s GTIG threat intelligence team, Lookout Inc. and iVerify Inc. published their ...
Android

'Dante' Malware reportedly targeted Chrome users through zero-day exploit

Cybersecurity firm Kaspersky has detailed more of its findings on the distribution of malware through a zero-day exploit it uncovered in Google Chrome earlier this year. The exploit was executed ...
Dark Reading

'BlueHammer' Windows Zero-Day Exploit Signals Microsoft Bug Disclosure Issues

The leak online of exploit code for an apparent Windows zero-day flaw dubbed "BlueHammer" could be the sign of a larger issue that security researchers face when collaborating with Microsoft on ...
SiliconANGLE

Google Threat Intelligence Group warns enterprise systems increasingly targeted by zero-day exploits

A new report out today from Google LLC’s Threat Intelligence Group finds that zero-day vulnerability exploitation remained elevated in 2025 as attackers increasingly targeted enterprise infrastructure ...
TechRepublic

Apple Patches Zero-Day Exploit Targeting Google Chrome Users

A zero-day exploit targeted Google Chrome users has been patched by Apple. Their latest updates target a variety of devices and operating systems. Apple recently issued a round of system updates to ...

Litecoin gives post-attack update, but other devs doubt zero-day theory

Litecoin, a layer-1 proof-of-work (PoW) blockchain network, was hit by a “zero-day” vulnerability on Saturday, which caused a ...
Infosecurity-magazine.com

Zero-Day Exploits Surge, Nearly 30% of Flaws Attacked Before Disclosure

Cyber attackers continue to speed up vulnerability exploitation and last year 28.96% of known exploited vulnerabilities (KEVs) identified by VulnCheck were exploited before being publicly disclosed, ...