0-day Archives

Top Security Incidents of 2025: Chrome Browser 0-Day Vulnerability Exploitation

NSFOCUS | February 18, 2026 | 0-day, APT, Blog, Cybersecurity Insights, Web security

Background In March 2025, cybersecurity researchers disclosed a highly sophisticated targeted attack campaign named “Operation ForumTroll.” Orchestrated by an unidentified state-sponsored APT group, the operation leveraged a Google Chrome 0-day vulnerability (CVE-2025-2783) as ...

NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.

An Overview of 2025 Global APT Attack Landscape

NSFOCUS | February 11, 2026 | 0-day, APT, Blog, Cybersecurity Insights, Web security

In 2025, the global cybersecurity situation continued to deteriorate, with a significant rise in the use of 0-day vulnerabilities in Advanced Persistent Threat (APT) attacks, which became a key driver of accelerating ...

NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks.

zero-day, vulnerabilities, zero-trust app hardware zero-trust prepare

Zero-Day Exploits Surge in 2023, Cisco, Fortinet Vulnerabilities Targeted

Nathan Eddy | November 15, 2024 | 0-day, cisa, cisco, Citrix, cyber threat actors, five eyes, Fortinet, SBD, vulnerability, zero-day

A report from the Five Eyes cybersecurity alliance, released by the CISA, highlights the majority of the most exploited vulnerabilities last year were initially zero-day flaws, a significant increase compared to 2022 ...

Security Boulevard

The Golden Gate Bridge, under an blood-red sky

Cisco Zero-Day: As Bad as it Gets — and No Fix 4 Weeks in

Keeping us in suspense—It doesn’t get worse than this: CVE-2023-20198 is CVSS=10 ...

Security Boulevard

Broken Windows: ‘Follina’ Flaw not Fixed — For 22 MONTHS

Richi Jennings | June 6, 2022 | 0-click, 0-day, Follina, Microsoft Windows, ms-msdt, rce, SB Blogwatch

A nasty zero-click, zero-day RCE bug remains unpatched in Windows. Dubbed “Follina,” Microsoft’s done diddly-squat about it ...

Security Boulevard

Stolen Source Code, Apple Zero-Days, Biden’s Privacy and Cybersecurity Policies

Tom Eston | November 16, 2020 | 0-day, Apple, Biden, Cybersecurity, Digital Privacy, Episodes, FBI, fcc, ios, Podcast, policy, Privacy, Source Code, US election, US government, voting, Weekly Edition, zero-day

In episode 147 for November 16th 2020: The latest about source code stolen from US government agencies and private companies, three actively exploited iOS zero-days in the wild and new App Store ...

The Shared Security Show

Zoom Zero-Day Flaw Allegedly Allows Full Takeover of Windows PCs

Filip Truta | July 10, 2020 | 0-day, Industry News, vieo conferencing, windows 7, zero-day, Zoom, zoom flaw

Video conferencing software Zoom is again in the spotlight over an alleged critical vulnerability that could allow an attacker to take over the victim’s computer and all data on it. Discovered by ...

HOTforSecurity

Update your Chrome browser now! 0-day actively exploited in the wild

Filip Truta | March 7, 2019 | 0-day, 0-day vulnerability, Chrome, chrome 0-day, google, Google Chrome, Industry News, web browser

Google has released a new stable version of its Internet surfing software equipped with a patch for a zero-day vulnerability that is reportedly being exploited in the wild. The flaw, if exploited, ...

HOTforSecurity

February 2019 Patch Tuesday – 74 Vulns, 20 Critical, Exchange 0-day, Adobe Vulns

Jimmy Graham | February 12, 2019 | 0-day, adobe, flash, Microsoft, Patch Tuesday, security, The Laws of Vulnerabilities, Vulnerabilities

This month’s Patch Tuesday is very large, with 74 vulns being addressed with 20 labeled as critical. Fifteen of these critical vulns are in the Scripting Engine and browsers, with the remainder ...

The Laws of Vulnerabilities – Qualys Blog

VirtualBox zero-day flaw released on Github; working exploit available but no patch

Filip Truta | November 8, 2018 | 0-day, GitHub, Industry News, virtual box, virtual machine, Virtualization, zero-day

An independent researcher has turned a bit rogue, disclosing a zero-day vulnerability in the popular VirtualBox virtualization software while expressing deep disagreement with the state of security research, and bug bounty standards ...

HOTforSecurity

0-day

Top Security Incidents of 2025: Chrome Browser 0-Day Vulnerability Exploitation

An Overview of 2025 Global APT Attack Landscape

Zero-Day Exploits Surge in 2023, Cisco, Fortinet Vulnerabilities Targeted

Cisco Zero-Day: As Bad as it Gets — and No Fix 4 Weeks in

Broken Windows: ‘Follina’ Flaw not Fixed — For 22 MONTHS

Stolen Source Code, Apple Zero-Days, Biden’s Privacy and Cybersecurity Policies

Zoom Zero-Day Flaw Allegedly Allows Full Takeover of Windows PCs

Update your Chrome browser now! 0-day actively exploited in the wild

February 2019 Patch Tuesday – 74 Vulns, 20 Critical, Exchange 0-day, Adobe Vulns

VirtualBox zero-day flaw released on Github; working exploit available but no patch

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On