zero-day vulnerability

Business

Libraesva ESG Zero-Day Exploited in Active Attacks (CVE-2025-59689)

September 26, 2025
Glowing red email symbol on a rain-soaked laptop screen in a dark, cyberpunk setting.

A critical zero-day vulnerability (CVE-2025-59689) in the Libraesva Email Security Gateway is being actively exploited by a suspected state-sponsored actor,…

Read More »
Artificial Intelligence

Chrome 0-Day Patched, npm Attack, LinkedIn AI Data Scandal

September 26, 2025
Cybersecurity Week in Review: Laptop with data visualizations and cloud icons.

A large majority (89%) of enterprise AI usage is undetected by IT and security teams, posing significant data privacy and…

Read More »
BigTech Companies

Google Patches Critical Chrome Zero-Day Flaw (CVE-2025-10585)

September 19, 2025
Chrome browser logo superimposed on a complex network of glowing orange wires and vintage computers.

Google has released an urgent security update for Chrome to fix a zero-day vulnerability (CVE-2025-10585) that is being actively exploited,…

Read More »
BigTech Companies

Apple Patches Critical Zero-Day Flaw in “Extremely Sophisticated Attack”

August 22, 2025
Fiery Apple logo engulfed in flames and smoke, set against a dark background.

Apple has released a critical security update to address a zero-day vulnerability (CVE-2025-43300) that was exploited in a sophisticated attack…

Read More »
BigTech Companies

Elastic Denies Zero-Day RCE Flaw in Defend EDR

August 20, 2025
Cyberpunk-style figure in a hooded coat holds a glowing red cube against a futuristic city backdrop.

Elastic denies claims of a zero-day remote code execution vulnerability in its Defend platform, refuting a public disclosure by AshES…

Read More »
Cybersecurity

SonicWall VPNs Under Attack by Rising Akira Ransomware Threat

August 5, 2025
Close-up of the SonicWall logo on a white sign.

Security researchers report a surge in ransomware attacks exploiting SonicWall SSL VPNs, possibly due to a zero-day vulnerability, even on…

Read More »
Cybersecurity

Microsoft SharePoint Zero-Day Exploited in RCE Attacks – No Fix Yet

July 22, 2025
SharePoint logo with teal and white design elements against a dark red background.

Microsoft SharePoint is under active attack via zero-day vulnerabilities (CVE-2025-53770 and CVE-2025-53771), enabling remote code execution on on-premises servers, with…

Read More »
Cybersecurity

Critical Zero-Day Threat for Cursor & Windsurf Users Exposed

July 13, 2025
Cursor, Windsurf, Firebase Studio, and Gitpod app logos displayed on a cracked, dark surface. Each logo has a cracked texture.

A zero-day vulnerability in AI coding tools (e.g., Cursor, Windsurf) exposed developers to machine hijacking via compromised extensions, with attackers…

Read More »
BigTech Companies

Google Chrome Critical Security Update Fixes Active Exploit (CVE-2025-6554)

July 2, 2025
Chrome logo centered against a backdrop of glowing orange network connections.

Google Chrome users must urgently update their browsers to patch a critical zero-day vulnerability (CVE-2025-6554) in the V8 JavaScript engine,…

Read More »