zero-day Archives • Page 9 of 10 • Daily CyberSecurity

CISA Flags Actively Exploited Vulnerabilities in Chrome, SAP, and DrayTek Routers Exploited Vulnerabilities CISA Alert

CISA Flags Actively Exploited Vulnerabilities in Chrome, SAP, and DrayTek Routers

Do Son May 16, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added three new security vulnerabilities to its Known...

URGENT Chrome Update: High-Risk CVE-2025-4664 Flaw Actively Exploited In The Wild – Patch Immediately! Screenshot_20250515-082049

URGENT Chrome Update: High-Risk CVE-2025-4664 Flaw Actively Exploited In The Wild – Patch Immediately!

Do Son May 15, 2025

Google has released a critical Stable Channel Update for Chrome Desktop, bumping the version to 136.0.7103.113/.114 for...

Microsoft May 2025 Patch Tuesday Fixes 83 Vulnerabilities, Including 5 Exploited in the Wild Patch Tuesday, Zero-Day Exploits

Microsoft May 2025 Patch Tuesday Fixes 83 Vulnerabilities, Including 5 Exploited in the Wild

Do Son May 13, 2025

Microsoft’s May 2025 Patch Tuesday has addressed a total of 83 vulnerabilities across its product ecosystem, including...

Fortinet CVE-2025-32756 Exploited in the Wild: Critical RCE Flaw Hits FortiVoice and More Fortinet, CVE-2025-32756

Fortinet CVE-2025-32756 Exploited in the Wild: Critical RCE Flaw Hits FortiVoice and More

Do Son May 13, 2025

Fortinet has disclosed a critical stack-based buffer overflow vulnerability, tracked as CVE-2025-32756, affecting a wide range of...

SAP Security Alert: May 2025 Patch Day Exposes Critical Threats! SAP Security Patch CVE-2025-42999

SAP Security Alert: May 2025 Patch Day Exposes Critical Threats!

Do Son May 13, 2025

Today, 2025, SAP released 16 new Security Notes and updated 2 previously released ones as part of...

Türkiye-Linked Hackers Exploit Output Messenger Zero-Day (CVE-2025-27920) in Espionage Campaign

Do Son May 12, 2025

Microsoft Threat Intelligence has linked a regional cyber-espionage campaign exploiting a zero-day vulnerability in Output Messenger to...

Checkmarx Breach Supply Chain Attack Ivanti EPMM RCE CVE-2026-1281 Modular DS Vulnerability CVE-2026-23550 D-Link RCE Vulnerability CVE-2026-0625 Christmas 2025 GreyNoise Campaign, Japan-Based Initial Access Broker React2Shell Zero-Day, APT Active Exploitation WordPress vulnerability, authentication bypass FreePBX, zero-day Trend Micro Apex One, Remote Code Execution BitoPro Hack, Crypto Theft UNC5337 - CVE-2022-47945 Safe{Wallet} hack Fortinet vulnerability, CVE-2024-21762, FortiGate attack Balloonfly, Play ransomware Ivanti EPMM CVE-2025-4427 and CVE-2025-4428

Zero-Day CLFS Vulnerability (CVE-2025-29824) Exploited in Ransomware Attacks

Do Son May 7, 2025

Symantec’s Threat Hunter Team has uncovered a sophisticated attack involving a zero-day privilege escalation vulnerability in Microsoft’s...

Cellebrite Android Zero-Day Exploit PoC Released: CVE-2024-53104 Cellebrite exploit, Android zero-day

Cellebrite Android Zero-Day Exploit PoC Released: CVE-2024-53104

Do Son April 21, 2025

A security researcher published a proof-of-concept exploit code for an Android zero-day exploit chain developed by Cellebrite...

Weaver E-cology RCE CVE-2026-22679 CVE-2026-20127 Cisco SD-WAN Exploitation AI-Driven Cyberattack ARXON Malware React Server Components Vulnerability CVE-2025-55182 FortiWeb Auth Bypass, Unauthenticated Admin Takeover RayInitiator Bootkit, LINE VIPER CVE-2025-59689 Department of the Treasury cybersecurity - CVE-2025-0108 PoC CVE-2025-31103 Dior Data Breach SK Telecom data breach, long-term intrusion

APT41/RedGolf Infrastructure Briefly Exposed: Fortinet Zero-Days Targeted Shiseido

Do Son April 21, 2025

In a rare window into the operations of an advanced persistent threat, a KeyPlug-linked infrastructure briefly went...

Urgent Apple Security Patch: Zero-Day Exploits Target iPhones Apple zero-day, iPhone exploit

Urgent Apple Security Patch: Zero-Day Exploits Target iPhones

Do Son April 16, 2025

Apple has issued urgent security updates across its ecosystem—including iOS, macOS, iPadOS, tvOS, and visionOS—to patch two...

Ivanti Zero-Day CVE-2025-22457 Exploit Details Released Ivanti CVE-2025-22457 Ivanti zero-day

Ivanti Zero-Day CVE-2025-22457 Exploit Details Released

Do Son April 11, 2025

Researchers at Rapid7 published technical details and proof-of-concept exploit code for a critical zero-day vulnerability in Ivanti...

Windows CLFS Zero-Day Exploited to Deploy Ransomware CLFS zero-day Ransomware attack

Windows CLFS Zero-Day Exploited to Deploy Ransomware

Do Son April 9, 2025

Microsoft Threat Intelligence has disclosed active exploitation of a zero-day vulnerability in the Windows Common Log File...

Microsoft April 2025 Patch Tuesday: Critical Security Updates and Zero-Day Exploits Windows Wormable Exploit April 2026 Patch Tuesday Microsoft Patch Tuesday Zero-Day Vulnerabilities Microsoft, Patch Tuesday CVE-2025-55234 CVE-2024-43573 and CVE-2024-43572 Microsoft Patch Tuesday Security Vulnerabilities

Windows Wormable Exploit April 2026 Patch Tuesday Microsoft Patch Tuesday Zero-Day Vulnerabilities Microsoft, Patch Tuesday CVE-2025-55234 CVE-2024-43573 and CVE-2024-43572 Microsoft Patch Tuesday Security Vulnerabilities

Microsoft April 2025 Patch Tuesday: Critical Security Updates and Zero-Day Exploits

Do Son April 9, 2025

This April, Microsoft’s Patch Tuesday release addresses a significant number of vulnerabilities, highlighting the ever-present need for...

Cellebrite Spyware Bypasses Android Lock Screens with Zero-Day Flaws Donot APT Group - Android zero-day

Cellebrite Spyware Bypasses Android Lock Screens with Zero-Day Flaws

Do Son March 1, 2025

Israeli digital intelligence company Cellebrite offers intelligence gathering and forensic review services to its clients. Additionally, the...

Operation (Giỗ Tổ Hùng Vương) Hurricane: New OceanLotus Group Revealed in Espionage Campaigns CVE-2024-36072 Water Gamayun, MSC EvilTwin

Operation (Giỗ Tổ Hùng Vương) Hurricane: New OceanLotus Group Revealed in Espionage Campaigns

Do Son January 22, 2025

A recent report from Qianxin details the sophisticated cyber-espionage tactics employed by the New OceanLotus group. Active...

Fortinet FortiGate Firewalls Targeted in Sophisticated Campaign Exploiting Management Interfaces

Do Son January 14, 2025

A new report from Arctic Wolf Labs reveals a concerning campaign targeting publicly exposed management interfaces on...

New Zero-Day Emerges After Microsoft Patch Tuesday: CVE-2024-43461 Targets Windows MSHTML

Do Son September 15, 2024

In an unexpected turn of events, Microsoft has revised its September 2024 Patch Tuesday security advisory, revealing...

Operation DevilTiger: APT-Q-12’s Shadowy Tactics and Zero-Day Exploits Unveiled APT-Q-12 Operation DevilTiger

Operation DevilTiger: APT-Q-12’s Shadowy Tactics and Zero-Day Exploits Unveiled

Do Son August 29, 2024

The QiAnXin Threat Intelligence Center has disclosed the technical details of a sophisticated cyber espionage campaign dubbed...

Check Point Research Details 0-Day Flaw (CVE-2024-38112), Threatens Windows Users

Do Son July 9, 2024

Cybersecurity researchers at Check Point Research have uncovered a novel zero-day exploit that weaponizes seemingly innocuous Windows...

TikTok Hit by Zero-Day Attack: High-Profile Accounts Compromised TikTok addictive design breach TikTok, ByteDance TikTok Zero-Day - TikTok Play Store Trump Extends TikTok

TikTok addictive design breach TikTok, ByteDance TikTok Zero-Day - TikTok Play Store Trump Extends TikTok

TikTok Hit by Zero-Day Attack: High-Profile Accounts Compromised

Do Son June 5, 2024

In a recent wave of cyberattacks, TikTok has confirmed a zero-day vulnerability within its direct messaging system...

Critical Alert 1 Active Exploit Detected Today