https://appdevelopermagazine.com/microsoft-sharepoint-hit-by-widespread-zero-day-attacks/
Security researchers are raising alarms as Microsoft SharePoint hit by widespread zero-day attacks, putting countless organizations at risk and prompting...
zero day attacksmicrosoft sharepointhitwidespread
https://thehackernews.com/2025/03/zero-day-alert-google-releases-chrome.html?ref=blog.hunterstrategy.net
Google fixed Chrome zero-day CVE-2025-2783 on Mar 20 after attacks exploited a sandbox bypass flaw.
zero dayalertgooglereleaseschrome
https://gigazine.net/gsc_news/en/20230925-iphone-0-days-exploit
Google's Threat Analysis Group (TAG) and The Citizen Lab, which researches digital threats to civil society, collaborated to discover a zero-day exploit chain...
zero day exploitchainactuallyattacksiphone
https://www.crn.com/news/security/2025/cisco-sonicwall-disclose-new-attacks-exploiting-zero-day-flaws
Zero-day vulnerabilities in Cisco and SonicWall products have been exploited in new cyberattack campaigns, the vendors disclosed Wednesday.
zero dayciscosonicwalldisclosenew
https://www.bleepingcomputer.com/news/security/new-crushftp-zero-day-exploited-in-attacks-to-hijack-servers/
CrushFTP is warning that threat actors are actively exploiting a zero-day vulnerability tracked as CVE-2025-54309, which allows attackers to gain...
zero daynewexploitedattackshijack
https://www.bleepingcomputer.com/news/security/google-fixes-new-chrome-zero-day-flaw-exploited-in-attacks/
Google has released an emergency security update to fix the seventh Chrome zero-day vulnerability exploited in attacks this year.
zero day flawgooglefixesnewchrome
https://www.bleepingcomputer.com/news/security/fortinet-warns-of-new-fortiweb-zero-day-exploited-in-attacks/
Today, Fortinet released security updates to patch a new FortiWeb zero-day vulnerability that threat actors are actively exploiting in attacks.
zero dayfortinetwarnsnewexploited
https://www.helpnetsecurity.com/2025/01/23/sonicwall-sma-1000-exploited-zero-day-cve-2025-23006/
A zero-day vulnerability (CVE-2025-23006) affecting SonicWall Secure Mobile Access (SMA) 1000 Series appliances is being exploited.
zero day attackssonicwallsmaappliancesexploited
https://www.bleepingcomputer.com/news/security/sonicwall-warns-of-new-sma1000-zero-day-exploited-in-attacks/
SonicWall warned customers today to patch a vulnerability in the SonicWall SMA1000 Appliance Management Console (AMC) that was chained in zero-day attacks to...
zero daysonicwallwarnsnewexploited
https://www.bleepingcomputer.com/news/security/citrix-fixes-critical-netscaler-rce-flaw-exploited-in-zero-day-attacks/
Citrix fixed three NetScaler ADC and NetScaler Gateway flaws today, including a critical remote code execution flaw tracked as CVE-2025-7775 that was actively...
zero daycitrixfixescriticalnetscaler
https://www.cybersecuritydive.com/news/sonicwall-zero-day-firewall-attacks/756806/
Researchers recently warned about a surge in Akira ransomware attacks linked to a potential SonicWall vulnerability.
zero daysonicwallinvestigatingpossiblerelated
https://cyberinsider.com/apple-fixes-two-new-zero-day-flaws-exploited-in-targeted-ios-attacks/
Apple released security updates for iOS, iPadOS, and macOS to patch two zero-day flaws that are being actively exploited in targeted attacks.
two newzero dayapplefixesflaws
https://www.bleepingcomputer.com/news/security/fortinet-fixes-critical-zero-day-exploited-in-fortivoice-attacks/
Fortinet released security updates to patch a critical remote code execution vulnerability exploited as a zero-day in attacks targeting FortiVoice enterprise...
zero dayfortinetfixescriticalexploited
https://cyberscoop.com/amazon-threat-intel-apt-group-cisco-citrix-zero-days/
Nov 12, 2025 - The vendors disclosed and patched the defects last summer, but not before advanced attackers exploited the vulnerabilities to likely gain prolonged access for...
zero day attacksamazonpinsciscocitrix
https://www.bleepingcomputer.com/news/microsoft/microsoft-sharepoint-zero-day-exploited-in-rce-attacks-no-patch-available/
Critical zero-day vulnerabilities in Microsoft SharePoint, tracked as CVE-2025-53770 and CVE-2025-53771, have been actively exploited since at least July...
microsoft sharepointzero dayexploitedrceattacks
https://www.utwente.nl/en/eemcs/scs/education/assignments/finished-assignments/master/20210827-automatic-detection-of-zero-day-attacks-in-high-interaction-iot-honeypots-using-static-analysis-techniques/
zero day attacksautomaticdetectionhighinteraction
https://www.bleepingcomputer.com/news/security/play-ransomware-exploited-windows-logging-flaw-in-zero-day-attacks/
The Play ransomware gang has exploited a high-severity Windows Common Log File System flaw in zero-day attacks to gain SYSTEM privileges and deploy malware on...
zero day attacksplay ransomwareexploitedwindowslogging
https://thehackernews.com/2025/03/apple-releases-patch-for-webkit-zero.html?ref=blog.onsec.io
Apple patches WebKit zero-day CVE-2025-24201, exploited in sophisticated attacks before iOS 17.2. Update secures iOS, macOS, Safari, and Vision Pro.
zero day vulnerabilityapplereleasespatchwebkit
https://thehackernews.com/2025/04/dslogdrat-malware-deployed-via-ivanti.html
CVE-2025-0282 exploited by Chinese threat actors + DslogdRAT malware installs + 9X ICS scans spike
zero daymalwaredeployedviaivanti
https://cyberscoop.com/microsoft-goanywhere-ransomware-storm-1175/
Oct 7, 2025 - Multiple researchers and CISA have confirmed active exploitation of the maximum-severity defect. Fortra, the company behind the file-transfer service, remains...
zero day attacksmicrosoftpinsgoanywhereransomware
https://cyberscoop.com/cisa-emergency-directive-timeline-investigation/
The agency, which issued an emergency directive to federal agencies Thursday, said it took months to determine the root cause and mitigate the activity.
year oldcisasaysobservednearly
https://www.techtimes.com/articles/265119/20210908/microsoft-provides-fix-for-office-365-users-afftected-by-zero-day-security-flaw-attacks.htm
Microsoft provides fix for Office 365 users affected by the zero-day security flaw ongoing attack, in lieu of a security update.
microsoftprovidesfixofficeusers