Stealth Falcon Exploits Zero-Day CVE-2025-33053 Against Middle East Defense Targets
Check Point Research has uncovered a sophisticated cyber espionage campaign orchestrated by the Stealth Falcon APT group, which exploited a previousl…
ZeroDay Bug
Critical SAP Zero-Day Vulnerability Under Active Exploitation
A critical zero-day vulnerability in SAP NetWeaver systems (CVE-2025-31324) is currently being actively exploited by threat actors, according to secu…
BLASTPASS Explained: How NSO’s WebP Zero-Day Exploit Hacked iPhones Silently
In September 2023, Apple rushed to patch a critical vulnerability after researchers uncovered an alarming zero-click exploit chain attributed to…
Kaspersky Uncovers New Chrome 0-Day Actively Exploited
In the latest discovery, Kaspersky Lab exposed a highly sophisticated cyber attack, dubbed “ Operation ForumTroll ,” that leverages a critical zero-d…
Zero-Day Flaw in Parallels Desktop Allows Root Privilege Escalation
Security researchers have dropped a significant zero-day vulnerability in Parallels Desktop that could allow attackers to gain root privileges on mac…
Apple Fix Actively Exploited Zero-Day in iPhone and iPad
Apple has released iOS 18.3 and iPadOS 18.3, introducing significant security improvements with patches for more than 20 vulnerabilities across vari…
Ivanti Discloses Three New Zero-Day Vulnerabilities in Cloud Service Appliance
In a recent security advisory, Ivanti has revealed that three new zero-day vulnerabilities in its Cloud Service Appliance (CSA) have been actively ex…
Google Warns of Surging Zero-Day Attacks on Enterprise Tech
In its annual look at in-the-wild zero-day exploitation, Google has highlighted a concerning trend - hackers are increasingly setting their sights on…
Google Exposes Dangerous Commercial Spyware Industry Enabling Government Surveillance
A new bombshell report from Google provides an unprecedented look into the shadowy industry of commercial surveillance vendors - companies that devel…
Two New Zero-Day Flaws Disclosed in Ivanti Products, One Under Active Exploitation
Ivanti, a leading provider of cybersecurity software, has disclosed two new high-severity vulnerabilities affecting its Connect Secure and Policy Sec…
Critical Ivanti Zero-Day Vulnerabilities Under Active Exploitation
In a recent disclosure by Ivanti, a leading IT service management solutions provider, two zero-day vulnerabilities in their products have been active…
Operation Triangulation: New Details on iOS Zero-Click Exploits
Researchers from Kaspersky have published new technical details on Operation Triangulation , an extremely sophisticated iOS spyware attack uncovered …
Zimbra 0-day Exploited by Multiple Threat Groups to Target Government Organizations
Email servers are a prime target for hackers, as compromising them provides access to sensitive corporate communications and customer data. A recentl…
HTTP/2 'Rapid Reset' Attack Flaw Allows DDoS at Record-Breaking Scale
Cloudflare, Google, and Amazon AWS have publicly disclosed a serious vulnerability in the HTTP/2 web protocol that has been used to conduct record-br…
Actively Exploited Libvpx Flaw Affects both Firefox and Chrome Browsers
Google has released emergency security updates to patch the fifth Chrome zero-day vulnerability that has been exploited in attacks since the beginnin…
WebP 0day - Google Assign New CVE for libwebp Vulnerability
A critical zero-day vulnerability recently disclosed in the WebP image library also known as 0day in WebP poses a significant security risk across …