CISA orders feds to patch Windows flaw exploited as zero-day

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to secure their Windows systems ...
Hosted on MSN

SharePoint zero-day exploit heightens governance urgency

A critical SharePoint zero-day vulnerability, CVE-2026-32201, is being actively exploited, allowing remote code execution with no privileges or user interaction. Over 1,300 servers remain exposed, ...
Forbes

Critical Zero-Day Exposes FTP Servers To Attack

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Some weeks start better than others. If you are a member of an ...
Bleeping Computer

Oracle silently fixes zero-day exploit leaked by ShinyHunters

Oracle has silently fixed an Oracle E-Business Suite vulnerability (CVE-2025-61884) that was actively exploited to breach servers, with a proof-of-concept exploit publicly leaked by the ShinyHunters ...
SiliconANGLE

Researchers discover zero-day DarkSword exploit chain in iOS 18

Researchers from Google LLC and two cybersecurity companies have identified a set of zero-day exploits in iOS 18. Google’s GTIG threat intelligence team, Lookout Inc. and iVerify Inc. published their ...
Dark Reading

Attackers Exploit Critical Trend Micro Apex One Zero-Day Flaw

Trend Micro has identified two critical zero-day vulnerabilities in the management console for multiple enterprise endpoint security products, one of which is under active exploitation. The command ...
TechRepublic

Apple Patches Zero-Day Exploit Targeting Google Chrome Users

A zero-day exploit targeted Google Chrome users has been patched by Apple. Their latest updates target a variety of devices and operating systems. Apple recently issued a round of system updates to ...
SiliconANGLE

Google Threat Intelligence Group warns enterprise systems increasingly targeted by zero-day exploits

A new report out today from Google LLC’s Threat Intelligence Group finds that zero-day vulnerability exploitation remained elevated in 2025 as attackers increasingly targeted enterprise infrastructure ...
Dark Reading

'BlueHammer' Windows Zero-Day Exploit Signals Microsoft Bug Disclosure Issues

The leak online of exploit code for an apparent Windows zero-day flaw dubbed "BlueHammer" could be the sign of a larger issue that security researchers face when collaborating with Microsoft on ...

Litecoin gives post-attack update, but other devs doubt zero-day theory

Litecoin, a layer-1 proof-of-work (PoW) blockchain network, was hit by a “zero-day” vulnerability on Saturday, which caused a ...
HotHardware

Rejected By Microsoft, 3 Defender Zero-Days Are Now Actively Exploited

A cyber security expert that goes by the name Nightmare-Eclipse attempted to disclose three zero day exploits to Microsoft, but the first attempt went so poorly, he elected to release it into the wild ...