#zero-day-exploitation

[ follow ]
Information security
fromSecurityWeek
16 hours ago

Recent Fortra GoAnywhere MFT Vulnerability Exploited as Zero-Day

A critical deserialization vulnerability in Fortra GoAnywhere MFT (CVE-2025-10035) was exploited in the wild at least eight days before patches were released.
Information security
fromTheregister
1 week ago

CISA: Attacker exploited Ivanti bugs, dropped snoopy malware

Two zero-day Ivanti EPMM vulnerabilities (CVE-2025-4427, CVE-2025-4428) were chained to deploy malware and enable arbitrary code execution on compromised servers.
Information security
fromTheregister
1 week ago

Google pushes emergency patch for Chrome 0-day

Update Chrome immediately to patch CVE-2025-10585, a V8 type-confusion vulnerability actively exploited to enable crashes, arbitrary code execution, and potential system compromise.
Information security
fromIT Pro
3 weeks ago

Enterprises need to patch these Citrix flaws now

Critical memory-overflow and access-control vulnerabilities in Citrix NetScaler ADC/Gateway allow remote code execution, denial-of-service, and are being actively exploited.
Information security
fromThe Hacker News
1 month ago

Chinese Hackers Murky, Genesis, and Glacial Panda Escalate Cloud and Telecom Espionage

Murky Panda exploits trusted cloud relationships, internet-facing appliances, and supply-chain weaknesses to gain access and deploy a Golang RAT called CloudedHope.
[ Load more ]