Zero-day Exploit Archives

Microsoft Windows malware software supply chain

Google Detects AI-Created Exploit, Thwarts ‘Mass Exploitation Operation’

Jeffrey Burt | May 13, 2026 | AI malware, AI Security in LLM, Anthropic AI, China-nexus cyber attacks, Google Threat Intelligence, Microsoft AI, North Korean Threat Actors, OpenAI, TeamPCP, Zero-day Exploit

Google threat researchers detected what is believed to be the first documented instance of a zero-day exploit that was generated by an AI model that was created by a group of threat ...

Security Boulevard

Threat Actors Use AI to Automate Zero-Day Discovery and Exploitation at Machine Speed

Evan Rowe | May 4, 2026 | AI, Cyber threats and incidents, Zero-day Exploit

What happened Cyberthint analysts have documented a structural shift in how cyberattacks are conducted, with threat actors now using artificial intelligence to discover and exploit zero-day vulnerabilities in minutes rather than months ...

CISO Whisperer

Lazarus Hacker Group Actively Exploiting Windows Kernel Flaw

Wajahat Raja | March 11, 2024 | CVE-2024-21338, Cyber Attack Mitigation, Cyber Espionage, cybersecurity awareness, Cybersecurity News, cybersecurity posture, Cybersecurity Vulnerabilities, Kernel-Level Access, Lazarus Hacker Group, patch management, Privilege Escalation, Threat Intelligence, Windows Kernel Flaw, Zero-day Exploit

The cybersecurity world is abuzz with the revelation of Lazarus Group’s exploitation of a critical vulnerability in Windows Kernel. The Windows Kernel flaw, targeting CVE-2024-21338, has raised concerns due to its potential ...

TuxCare

SmartScreen Vulnerability Exploited To Target Traders

Wajahat Raja | February 28, 2024 | CVE-2024-21412, Cybersecurity Measures, Cybersecurity News, cybersecurity threats, DarkMe Malware, Financial Market Traders, microsoft defender, phishing campaign, SmartScreen Vulnerability, Water Hydra APT, Zero-day Exploit

A cybersecurity firm has recently detected a flaw in the Microsoft Defender SmartScreen and is terming it a zero-day threat. The target devices are infected with highly dangerous DarkMe malware through this ...

TuxCare

Ivanti VPN Zero-Day Combo Chained ‘by China’

Richi Jennings | January 12, 2024 | CVE-2023-46805, CVE-2024-21887, Ivanti, ivanti acquisition, Ivanti Zero day vulnerability, SB Blogwatch, Zero Day Attacks, zero-day, zero-day attack, Zero-Day Bug, Zero-day Exploit, zero-day exploits, zero-day flaw, zero-day flaws, zero-day threat, Zero-day threats, zeroday, zerodayvulnerabilities

Under active exploitation since last year—but still no patch available ...

Security Boulevard

Zimbra Zero-Day Exploit Unveiled

Cyber threats in business email systems have become extremely common in this digital world. Recently, a critical zero-day vulnerability in the widely used Zimbra Collaboration email software has been exploited by multiple ...

TuxCare

Citrix Bleed Exploit: Protect Your NetScaler Accounts

Rohan Timalsina | November 10, 2023 | Citrix Bleed, Cybersecurity Weaknesses, enterprise security, Linux & Open Source News, PoC Exploit, Ransomware, security patches, security vulnerabilites, Zero-day Exploit

Recently, there’s been a buzz in the tech world about a potential security risk known as the ‘Citrix Bleed’ vulnerability, officially labeled as CVE-2023-4966. This vulnerability affects Citrix NetScaler ADC and NetScaler ...

TuxCare

Urgent: Patch Atlassian Confluence Now – CISA & FBI Advisory

Rohan Timalsina | November 2, 2023 | Atlassian Confluence, cisa, CVE, Cybersecurity Weaknesses, enterprise security, FBI alert, Linux & Open Source News, security patches, security vulnerabilites, Zero-day Exploit

CISA, FBI, and MS-ISAC are strongly advising network administrators to promptly apply patches to their Atlassian Confluence servers to protect against the active exploitation of a critical security vulnerability. Identified as CVE-2023-22515, ...

TuxCare

The Golden Gate Bridge, under an blood-red sky

Cisco Zero-Day: As Bad as it Gets — and No Fix 4 Weeks in

Keeping us in suspense—It doesn’t get worse than this: CVE-2023-20198 is CVSS=10 ...

Security Boulevard

Workstations At Risk: Unveiling the RCE Bug

Wajahat Raja | September 24, 2023 | Cyber Threats, Cybersecurity, Cybersecurity Measures, Cybersecurity News, Microsoft, Operating System, patch, Remote Code Execution, Security Research, security vulnerability, software updates, system security, vulnerability assessment, Windows 11, Windows Themes, Zero-day Exploit

Recently, the world was made aware of a major vulnerability lurking within Windows Themes, tagged as CVE-2023-38146. This vulnerability, called ‘ThemeBleed,’ has a high severity rating of 8.8 and has sparked worry ...

TuxCare

Zero-day Exploit

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On