zero-day exploit

Business

CISA Orders Agencies to Patch Critical Fortinet Flaw in 7 Days

November 21, 2025
CISA logo with a digital network background in blue and red.

CISA has mandated a 7-day deadline for U.S. government agencies to patch CVE-2025-58034, a critical Fortinet FortiWeb vulnerability being actively…

Read More »
BigTech Companies

Urgent FortiWeb Zero-Day Actively Exploited, Fortinet Warns

November 19, 2025
The Fortinet logo in white against a dark red, abstract background.

A zero-day vulnerability (CVE-2025-58034) in FortiWeb firewalls allows authenticated attackers to execute arbitrary OS commands via manipulated HTTP or CLI…

Read More »
BigTech Companies

Fortinet Patches Actively Exploited FortiWeb Zero-Day

November 16, 2025
Fortinet logo with a dynamic red and black abstract background.

Fortinet has patched a critical zero-day vulnerability (CVE-2025-64446) in its FortiWeb firewall, which is being actively exploited to create unauthorized…

Read More »
Business

Active Exploit Targets Suspected FortiWeb Zero-Day

November 15, 2025
Fortinet logo superimposed on a futuristic, glowing digital network.

A critical zero-day vulnerability (CVE-2025-64446) in Fortinet's FortiWeb is being actively exploited, allowing unauthenticated attackers to create unauthorized admin accounts…

Read More »
Cybersecurity

CISA Flags Spyware Zero-Day in Urgent Security Alert

November 12, 2025
A hand holds a smartphone displaying the Samsung logo, with the Samsung logo visible on a blue screen in the background.

US authorities issued a critical security alert for a high-risk vulnerability in Samsung mobile devices, exploited since mid-2024 to install…

Read More »
Cybersecurity

CISA Urges Immediate Patch for Samsung Spyware Zero-Day

November 11, 2025
CISA logo with eagle and city skyline on a dark, abstract background.

A critical vulnerability (CVE-2025-21042) in Samsung smartphones allows attackers to install LandFall spyware via manipulated DNG images sent through WhatsApp,…

Read More »
BigTech Companies

Google: Clop Hackers Stole Major Data in Oracle Breach

October 15, 2025
Close-up of the red Oracle logo on the side of a modern building.

The Clop ransomware group breached Oracle's E-Business Suite starting around August 9, exploiting a zero-day vulnerability (CVE-2025-61882) to steal corporate…

Read More »
Business

Fortra GoAnywhere MFT Zero-Day Actively Exploited

September 27, 2025
Hands typing on a laptop with a digital graphic showing file transfer.

A critical vulnerability (CVE-2025-10035) in Fortra's GoAnywhere MFT was exploited for over a week before a patch was released on…

Read More »
Business

Cisco Patches Critical Zero-Day Flaw Actively Under Attack

September 26, 2025
Cisco logo with sound wave graphic and abstract geometric shapes in orange and red.

Cisco has released critical security patches for 14 vulnerabilities in its IOS and IOS XE software, including a high-severity flaw…

Read More »
Cybersecurity

SonicWall warns admins: Disable SSLVPN now to stop attacks

August 6, 2025
SonicWall logo on a background of red and black streaks of light.

SonicWall has issued an urgent alert to disable SSLVPN services due to potential zero-day exploits targeting Gen 7 firewalls, with…

Read More »
BigTech Companies

Chinese Hackers Exploit SharePoint Zero-Day, Warn Google & Microsoft

July 22, 2025
A hooded figure sits before a laptop displaying green code, with a blurred Chinese flag in the background, suggesting cyber activity.

Google and Microsoft experts discovered a critical SharePoint vulnerability (CVE-2025-53770) exploited by Chinese state-sponsored hackers to steal encryption keys and…

Read More »
BigTech Companies

Microsoft SharePoint zero-day exploits target on-prem servers

July 22, 2025
Close-up of a finger interacting with the Microsoft SharePoint app on a touchscreen device.

Hackers are actively exploiting new vulnerabilities (CVE-2025-53770 and CVE-2025-53771) in Microsoft SharePoint Server, leading to unauthorized access and data exposure…

Read More »
BigTech Companies

Microsoft SharePoint Zero-Day Exploit Sparks Widespread Attacks

July 21, 2025
A vibrant, multicolored Microsoft logo displayed on a large digital billboard atop a modern glass skyscraper.

A critical zero-day vulnerability in Microsoft SharePoint (CVE-2025-53771) is being actively exploited, risking data breaches for businesses and government agencies.…

Read More »
Cybersecurity

SonicWall SMA Devices Still Infected with Stealthy OVERSTEP Malware

July 18, 2025
SonicWall logo displayed on an abstract background of glowing red and blue blocks and lines.

Cybersecurity experts discovered a malware campaign targeting outdated SonicWall SMA 100 devices, deploying the stealthy OVERSTEP backdoor via stolen admin…

Read More »
Cybersecurity

Google Uncovers Custom Backdoor on SonicWall Devices

July 17, 2025
Cybersecurity warning: Multiple red warning triangles with exclamation marks appear on a screen with binary code, alongside a glowing blue keyboard.

Google researchers identified a cyberattack targeting outdated SonicWall Secure Mobile Access (SMA) appliances, using custom malware called Overstep to evade…

Read More »
Business

Nippon Steel IT Unit Targeted in Zero-Day Cyberattack

July 11, 2025
Nippon Steel logo on a frosted glass building sign.

A major cyberattack on NS Solutions, Nippon Steel's IT division, exposed sensitive employee and client data via a zero-day exploit…

Read More »
BigTech Companies

Microsoft patches zero-day flaw as Mirai botnets hit Wazuh servers

June 16, 2025
A person stands in a dimly lit library with papers falling from the ceiling; the words 'Cybersecurity Week in Review' are overlaid.

Microsoft patched 66 security flaws, including a zero-day exploit (CVE-2025-33053), while Mirai botnets targeted unpatched Wazuh servers via a critical…

Read More »