The security firm Mandiant says Microsoft, Google, and Apple had most of the 55 zero-day issues that were exploited by hackers in 2022. The number is lower than 2021, but still higher than most years.
Zero day RSS
Microsoft Defender, AVG, Avast, and more, were found vulnerable to a new zero-day security exploit through which harmless files, even system files, could be deleted using the anti-virus.
Microsoft is reportedly planning to push the May 2020 Update (version 2004) general availability to May 28. It was slated for a May 12 release but has been moved due to a zero-day vulnerability patch.
Google today revealed that a zero-day vulnerability in Windows 7 was being used in concert with an exploit in its Chrome browser to target users. The company is alerting users to update the browser.
A new malware that attacks devices via Bluetooth has been discovered by a security firm. Without the need to pair, it can spread itself onto other devices without the victim's knowledge.
Yesterday's data dump from WikiLeaks that brought many CIA documents to light highlighted the agency's ability to hack into many of our personal devices. Apple has now publicly addressed that.
Mozilla has updated its Firefox browser to fix a bug that exposes Tor users. The bug so far has only been leveraged against Windows users but technically affects users running OS X or Linux too.
Google's Project Zero researcher, Tavis Ormandy, has uncovered a raft of critical vulnerabilities affecting the core engine found in Symantec and Norton branded security products.
A zero-day vulnerability is being exploited in the wild across all platforms, as Adobe's engineers scramble to put out a patch this week. This is the third such instance in as many months.
A credible zero-day vulnerability is being auctioned off on criminal websites. The exploit can be used on all versions of Windows including 10 and can even supposedly bypass Microsoft's EMET suite.
Microsoft and Adobe are warning users against two zero-day vulnerabilities that are being used in the wild. Microsoft already patched its software with yesterday's Patch Tuesday.
Apple appears to have quietly dropped support for its QuickTime for Windows program with security analysts saying users are exposed to two known vulnerabilities.
Adobe has released an emergency patch that addresses a recently discovered flaw in Flash. The vulnerability has already been exploited in the wild in ransomware programs and exploit kits.
A zero-day exploit was found in the Linux kernel, which leaves hundreds of millions vulnerable to attack. Android users are most vulnerable due to lack of security patches and outdated OS versions.
New security firm Zerodium is offering a million dollar payout for anyone who can provide a jailbreak for iOS 9. The initiative has been dubbed ‘The Million Dollar iOS 9 Bug Bounty'.
Qualcomm has announced that its Smart Protect mobile anti-malware solution will be coming to the Snapdragon 820 and will help protect devices from attacks even if the operating system is compromised.
The United States government is buying up zero-day and other types of digital exploits found in popular software. Their official stated goal is to use these in developing attack programs.
According to a report from a cybersecurity company, Russian hackers have been using a Windows exploit found in almost all versions of the OS to spy on important institutions and governments.
Microsoft was informed seven months ago about a zero-day exploit that was found in Internet Explorer 8 but has yet to issue an update to fix the issue, but there's been no attacks that have used it.
Two researchers from HP demonstrated a previously unknown zero-day exploit in Internet Explorer 11 running on Windows 8.1 during a session of the Mobile Pwn2Own hacking contest.
A security firm claims to have discovered a new zero-day exploit in most versions of Internet Explorer and that the bug is currently being used in the wild by hackers.
Microsoft has sent out another message to Windows XP users to upgrade before April 8th, 2014, saying that after its official support date ends, it will "have a 'zero day' vulnerability forever."
Microsoft has warned of a new zero-day flaw in all versions of Windows except Windows 7 and certain versions of Windows Server 2008. The flaw in the Windows Graphics Rendering Engine could allow an attacker to...
Microsoft issued a security bulletin on Friday to warn customers of a 0-day exploit involving the Windows Shell. The vulnerability is caused due to an error in Windows Shell when parsing shortcuts (.lnk). The flaw can...
A very critical security vulnerability has been discovered without a fix for it yet. The exploit can hijack a computer remotely if the victim simply visits a compromised web site. The attack allows...