In a current warning message, Google lists the vulnerabilities closed with the patch levels 2015-08-01 and 2025-08-05. The most dangerous is a vulnerability classified as “critical” (CVE-2025-48530) ...

Microsoft has observed two named Chinese nation-state actors, Linen Typhoon and Violet Typhoon, exploiting vulnerabilities ...

Google’s Refresh Outdated Content tool was exploited to de-index a press article, exposing a flaw that allowed attackers to ...

Microsoft released an emergency security patch on Sunday to “mitigate active attacks targeting on-premises servers.” ...

Threat actors are exploiting an old Solaris vulnerability to install BPFDoor malware. The malicious software was discovered by researchers at PricewaterhouseCoopers (PwC) and linked to a China ...

It is therefore possible for an attacker to exploit a N-day vulnerability as long as it has not been patched on the targeted system. Mandiant exposes a ratio of 30:70 of N-day to zero-days in 2023 ...

One vulnerability was found in Zimbra, an open-source collaboration platform previously targeted by state-sponsored cyberespionage groups, including through a zero-day exploit in late 2023.

Malicious hackers have released code that exploits a widespread vulnerability in software from Computer Associates (CA), setting off a round of Internet scanning for vulnerable CA systems.

According to The Verge, researchers at Sangfor published a proof-of-concept for the exploit and later removed it, but it had already been forked on GitHub. The group planned to detail multiple 0-day ...