2,252 Results for:zero day

  • Sort by: 

Critical CrushFTP zero-day vulnerability under attack

By Arielle Waldman 24 Apr 2024

While a patch is now available, a critical CrushFTP vulnerability came under attack as a zero-day and could allow attackers to exfiltrate all files on the server. Read More

Microsoft patches two zero-days for Valentine’s Day

By Alex Scroxton 14 Feb 2024

Two security feature bypasses impacting Microsoft SmartScreen are on the February Patch Tuesday docket, among more than 70 issues Read More

Palo Alto Networks discloses RCE zero-day vulnerability

By Rob Wright 12 Apr 2024

Threat actors have exploited the remote code injection flaw, which affects the GlobalProtect gateway in Palo Alto Networks' PAN-OS software, in a 'limited' number of attacks. Read More

Cyber spies, not cyber criminals, behind most zero-day exploitation

By Alex Scroxton 27 Mar 2024

Analysis from Google has found that zero-day vulnerabilities are much more heavily exploited for espionage purposes than for financially motivated cyber crime Read More

Spyware vendors behind 75% of zero-days targeting Google

By Alexander Culafi 27 Mar 2024

Google observed 97 zero-day vulnerabilities exploited in the wild last year, which was more than a 50% increase over the 62 exploited zero-day vulnerabilities tracked in 2022. Read More

Microsoft corks Windows zero-day on April Patch Tuesday

By Tom Walat 09 Apr 2024

The company delivered one of its largest security update releases in recent years with a proxy driver spoofing vulnerability topping the patching priority list. Read More

Apple discloses 2 iOS zero-day vulnerabilities

By Alexander Culafi 06 Mar 2024

CVE-2024-23225 and CVE-2024-23296, which bypass kernel memory protections, mark the second and third zero-day vulnerabilities that Apple has disclosed and patched this year. Read More

February Patch Tuesday corrects two Windows zero-days

By Tom Walat 13 Feb 2024

Administrators should focus on quickly deploying a critical vulnerability in Microsoft Outlook and exercising caution when applying an Exchange Server 2019 cumulative update. Read More

Google: Spyware vendors are driving zero-day exploitation

By Arielle Waldman 06 Feb 2024

Google's Threat Analysis Group urged further government action against commercial surveillance vendors that let customers abuse spyware products with impunity. Read More

CISA warns Fortinet zero-day vulnerability under attack

By Arielle Waldman 12 Feb 2024

CISA alerted federal agencies that a critical zero-day vulnerability in FortiOS is being actively exploited, though Fortinet has yet to confirm reports. Read More