Zero-Day Flaw in Parallels Desktop Allows Root Privilege Escalation
Security researchers have dropped a significant zero-day vulnerability in Parallels Desktop that could allow attackers to gain root privileges on mac…
ZeroDay Bug
Apple Fix Actively Exploited Zero-Day in iPhone and iPad
Apple has released iOS 18.3 and iPadOS 18.3, introducing significant security improvements with patches for more than 20 vulnerabilities across vari…
Ivanti Discloses Three New Zero-Day Vulnerabilities in Cloud Service Appliance
In a recent security advisory, Ivanti has revealed that three new zero-day vulnerabilities in its Cloud Service Appliance (CSA) have been actively ex…
Google Warns of Surging Zero-Day Attacks on Enterprise Tech
In its annual look at in-the-wild zero-day exploitation, Google has highlighted a concerning trend - hackers are increasingly setting their sights on…
Google Exposes Dangerous Commercial Spyware Industry Enabling Government Surveillance
A new bombshell report from Google provides an unprecedented look into the shadowy industry of commercial surveillance vendors - companies that devel…
Two New Zero-Day Flaws Disclosed in Ivanti Products, One Under Active Exploitation
Ivanti, a leading provider of cybersecurity software, has disclosed two new high-severity vulnerabilities affecting its Connect Secure and Policy Sec…
Critical Ivanti Zero-Day Vulnerabilities Under Active Exploitation
In a recent disclosure by Ivanti, a leading IT service management solutions provider, two zero-day vulnerabilities in their products have been active…
Operation Triangulation: New Details on iOS Zero-Click Exploits
Researchers from Kaspersky have published new technical details on Operation Triangulation , an extremely sophisticated iOS spyware attack uncovered …
Zimbra 0-day Exploited by Multiple Threat Groups to Target Government Organizations
Email servers are a prime target for hackers, as compromising them provides access to sensitive corporate communications and customer data. A recentl…
HTTP/2 'Rapid Reset' Attack Flaw Allows DDoS at Record-Breaking Scale
Cloudflare, Google, and Amazon AWS have publicly disclosed a serious vulnerability in the HTTP/2 web protocol that has been used to conduct record-br…
Actively Exploited Libvpx Flaw Affects both Firefox and Chrome Browsers
Google has released emergency security updates to patch the fifth Chrome zero-day vulnerability that has been exploited in attacks since the beginnin…
WebP 0day - Google Assign New CVE for libwebp Vulnerability
A critical zero-day vulnerability recently disclosed in the WebP image library also known as 0day in WebP poses a significant security risk across …
New Apple Zero-Days Exploited to Deliver Predator Spyware
A new report from internet watchdog group Citizen Lab along with Google's Threat Analysis Group (TAG) reveals that Egyptian presidential candida…
Critical Zero-Day Vulnerability Exploited in MOVEit Transfer Software
A major cybersecurity vulnerability has been identified and exploited in MOVEit Transfer software, an application developed by Progress Software Corp…
Google Disclosed 18 Zero-day in Samsung Exynos Chipsets
Update: With the Google March Security update In a recent announcement , Google Security Team disclosed that Project Zero had reported eighteen 0-day…