Lanscope Endpoint Manager Zero-Day Exploited in the Wild 2025-10-23 at 13:05 By Ionut Arghire The bug has been exploited in the wild as a zero-day and the US cybersecurity agency CISA has added it to its KEV catalog. The post Lanscope Endpoint Manager Zero-Day Exploited in the Wild appeared first on SecurityWeek. This article is […]
React to this headline:
Lanscope Endpoint Manager Zero-Day Exploited in the Wild Read More »
Exploitation of Oracle EBS Zero-Day Started 2 Months Before Patching 2025-10-08 at 10:57 By Eduard Kovacs Hundreds of internet-exposed Oracle E-Business Suite instances may still be vulnerable to attacks. The post Exploitation of Oracle EBS Zero-Day Started 2 Months Before Patching appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
React to this headline:
Exploitation of Oracle EBS Zero-Day Started 2 Months Before Patching Read More »
Fortra GoAnywhere MFT Zero-Day Exploited in Ransomware Attacks 2025-10-07 at 12:40 By Ionut Arghire The Medusa ransomware operators exploited the GoAnywhere MFT vulnerability one week before patches were released. The post Fortra GoAnywhere MFT Zero-Day Exploited in Ransomware Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to
React to this headline:
Fortra GoAnywhere MFT Zero-Day Exploited in Ransomware Attacks Read More »
Oracle E-Business Suite Zero-Day Exploited in Cl0p Attacks 2025-10-06 at 11:41 By Eduard Kovacs Oracle has informed customers that it has patched a critical remote code execution vulnerability tracked as CVE-2025-61882. The post Oracle E-Business Suite Zero-Day Exploited in Cl0p Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
React to this headline:
Oracle E-Business Suite Zero-Day Exploited in Cl0p Attacks Read More »
Broadcom Fails to Disclose Zero-Day Exploitation of VMware Vulnerability 2025-10-01 at 13:36 By Ionut Arghire Impacting VMware Aria Operations and VMware Tools, the flaw can be exploited to elevate privileges on the VM. The post Broadcom Fails to Disclose Zero-Day Exploitation of VMware Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
React to this headline:
Broadcom Fails to Disclose Zero-Day Exploitation of VMware Vulnerability Read More »
Cisco Firewall Zero-Days Exploited in China-Linked ArcaneDoor Attacks 2025-09-26 at 10:20 By Ionut Arghire Leading to remote code execution and privilege escalation, the flaws were exploited on Cisco ASA 5500-X series devices that lack secure boot. The post Cisco Firewall Zero-Days Exploited in China-Linked ArcaneDoor Attacks appeared first on SecurityWeek. This article is an excerpt
React to this headline:
Cisco Firewall Zero-Days Exploited in China-Linked ArcaneDoor Attacks Read More »
Chinese Spies Lurked in Networks for 393 Days, Hunted for Zero-Day Intel 2025-09-25 at 15:33 By Eduard Kovacs Google’s Threat Intelligence Group and Mandiant have shared findings on a recent BrickStorm campaign linked to UNC5221. The post Chinese Spies Lurked in Networks for 393 Days, Hunted for Zero-Day Intel appeared first on SecurityWeek. This article
React to this headline:
Chinese Spies Lurked in Networks for 393 Days, Hunted for Zero-Day Intel Read More »
Cisco Patches Zero-Day Flaw Affecting Routers and Switches 2025-09-25 at 11:46 By Ionut Arghire The security defect allows remote attackers with administrative privileges to execute arbitrary code as the root user. The post Cisco Patches Zero-Day Flaw Affecting Routers and Switches appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
React to this headline:
Cisco Patches Zero-Day Flaw Affecting Routers and Switches Read More »
Chrome 140 Update Patches Sixth Zero-Day of 2025 2025-09-18 at 11:10 By Ionut Arghire An exploited type confusion in the V8 JavaScript engine tracked as CVE-2025-10585 was found by Google Threat Analysis Group this week. The post Chrome 140 Update Patches Sixth Zero-Day of 2025 appeared first on SecurityWeek. This article is an excerpt from
React to this headline:
Chrome 140 Update Patches Sixth Zero-Day of 2025 Read More »
Samsung Patches Zero-Day Exploited Against Android Users 2025-09-15 at 11:21 By Ionut Arghire Reported by Meta and WhatsApp, the vulnerability leads to remote code execution and was likely exploited by a spyware vendor. The post Samsung Patches Zero-Day Exploited Against Android Users appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original
React to this headline:
Samsung Patches Zero-Day Exploited Against Android Users Read More »
Hackers Exploit Sitecore Zero-Day for Malware Delivery 2025-09-04 at 12:02 By Ionut Arghire Google has observed ViewState deserialization attacks leveraging a sample machine key exposed in older deployment guides. The post Hackers Exploit Sitecore Zero-Day for Malware Delivery appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this
React to this headline:
Hackers Exploit Sitecore Zero-Day for Malware Delivery Read More »
Two Exploited Vulnerabilities Patched in Android 2025-09-04 at 11:40 By Ionut Arghire Elevation of privilege flaws in Android Runtime (CVE-2025-48543) and Linux kernel (CVE-2025-38352) have been exploited in targeted attacks. The post Two Exploited Vulnerabilities Patched in Android appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this
React to this headline:
Two Exploited Vulnerabilities Patched in Android Read More »
WhatsApp Zero-Day Exploited in Attacks Targeting Apple Users 2025-09-02 at 14:48 By Ionut Arghire The vulnerability (CVE-2025-55177) was exploited along an iOS/macOS zero-day in suspected spyware attacks. The post WhatsApp Zero-Day Exploited in Attacks Targeting Apple Users appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:
React to this headline:
WhatsApp Zero-Day Exploited in Attacks Targeting Apple Users Read More »
Chinese Silk Typhoon Hackers Exploited Commvault Zero-Day 2025-08-22 at 16:45 By Ionut Arghire Silk Typhoon was seen exploiting Citrix NetScaler and Commvault vulnerabilities for initial access to victim systems. The post Chinese Silk Typhoon Hackers Exploited Commvault Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this
React to this headline:
Chinese Silk Typhoon Hackers Exploited Commvault Zero-Day Read More »
Apple Patches Zero-Day Exploited in Targeted Attacks 2025-08-21 at 13:21 By Ionut Arghire Apple has rolled out iOS and macOS updates that resolve a zero-day vulnerability exploited in highly targeted attacks. The post Apple Patches Zero-Day Exploited in Targeted Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React
React to this headline:
Apple Patches Zero-Day Exploited in Targeted Attacks Read More »
Elastic Refutes Claims of Zero-Day in EDR Product 2025-08-20 at 17:08 By Ionut Arghire Elastic has found no evidence of a vulnerability leading to RCE after details and PoC of a Defend EDR bypass were published online. The post Elastic Refutes Claims of Zero-Day in EDR Product appeared first on SecurityWeek. This article is an
React to this headline:
Elastic Refutes Claims of Zero-Day in EDR Product Read More »
Hundreds of N-able N-central Instances Affected by Exploited Vulnerabilities 2025-08-18 at 15:25 By Ionut Arghire More than 870 N-able N-central instances have not been patched against CVE-2025-8875 and CVE-2025-8876, two exploited vulnerabilities. The post Hundreds of N-able N-central Instances Affected by Exploited Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View
React to this headline:
Hundreds of N-able N-central Instances Affected by Exploited Vulnerabilities Read More »
Russian Hackers Exploited WinRAR Zero-Day in Attacks on Europe, Canada 2025-08-11 at 12:55 By Eduard Kovacs WinRAR has patched CVE-2025-8088, a zero-day exploited by Russia’s RomCom in attacks on financial, defense, manufacturing and logistics companies. The post Russian Hackers Exploited WinRAR Zero-Day in Attacks on Europe, Canada appeared first on SecurityWeek. This article is an
React to this headline:
Russian Hackers Exploited WinRAR Zero-Day in Attacks on Europe, Canada Read More »
Trend Micro Patches Apex One Vulnerabilities Exploited in Wild 2025-08-06 at 18:08 By Eduard Kovacs Trend Micro has rushed to fix two Apex One zero-days that may have been exploited by Chinese threat actors. The post Trend Micro Patches Apex One Vulnerabilities Exploited in Wild appeared first on SecurityWeek. This article is an excerpt from
React to this headline:
Trend Micro Patches Apex One Vulnerabilities Exploited in Wild Read More »
SonicWall Hunts for Zero-Day Amid Surge in Firewall Exploitation 2025-08-05 at 10:58 By Ionut Arghire Threat actors might be exploiting a zero-day vulnerability in SonicWall firewalls in a fresh wave of ransomware attacks. The post SonicWall Hunts for Zero-Day Amid Surge in Firewall Exploitation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
React to this headline:
SonicWall Hunts for Zero-Day Amid Surge in Firewall Exploitation Read More »