Dark Reading

Threat Actors Exploit Zero-Day in WatchGuard Firebox Devices

With attacks on the critical firewall vulnerability, WatchGuard joins a list of edge device vendors whose products have been ...
SecurityWeek

WatchGuard Patches Firebox Zero-Day Exploited in the Wild

WatchGuard warns that the critical Firebox vulnerability CVE-2025-14733 has been exploited in attacks for remote code ...
Forbes

41 Microsoft Zero-Day Warnings — Millions Of Users Face Update Choice

It has only been a matter of days since the U.S. Cybersecurity and Infrastructure Security Agency confirmed that Windows users were under attack from two zero-day exploits and urged federal users to ...
PC World

Google issues urgent Chrome update to fix a mysterious 0-day exploit

Google released urgent Chrome updates (versions 143.0.7499.109/101) to fix three vulnerabilities, including one actively exploited 0-day exploit classified as high risk. PCWorld reports that users ...
collider

Netflix’s Timely, Dark Political Thriller Has Already Racked Up 315 Million Streaming Hours, and It's Clear Why

Liam Gaughan is a film and TV writer at Collider. He has been writing film reviews and news coverage for ten years. Between relentlessly adding new titles to his watchlist and attending as many ...
Lifehacker

Google's December Security Update Fixes Two Zero-Day Exploits (and 105 Others)

In its Android Security Bulletin for December, Google is pushing an especially large number of updates to address vulnerabilities across different components—and two of the flaws may have been ...
Hosted on MSN

Urgent: zero-day exploit discovered in Chromium browsers

A zero-day vulnerability in Chromium-based browsers, identified as CVE-2025-10585, allows active exploitation through the V8 JavaScript engine's just-in-time compiler. Users are advised to update ...
ZDNet

Update Chrome ASAP - attackers are already exploiting this nasty zero-day flaw

A new zero-day vulnerability affects Google Chrome. The flaw has already been exploited in the wild. The zero-day could allow attackers to run malicious code. Another day, another zero-day, at least ...
Healthcare IT News

Cyber threat roundup: Akira ransomware, zero-day vulnerabilities and more

With the end of the government shutdown comes reauthorization of the Cybersecurity and Infrastructure Security Agency. The Department of Homeland Security agency has released a series of cybersecurity ...
CSOonline

Zero-day exploits hit Cisco ISE and Citrix systems in an advanced campaign

According to the Amazon Threat Intelligence team, attackers exploited bugs in Cisco and Citrix appliances before they were made public, deploying custom in-memory tooling against core identity ...
Infosecurity-magazine.com

CISA Adds Zero-Day Bug Used in Spyware Attacks to KEV

US federal agencies have been told to patch a zero-day vulnerability used by threat actors since last year to deploy spyware to Samsung devices. The out-of-bounds write flaw CVE-2025-21042 has a CVSS ...
Android

Galaxy Zero-Day: Spyware Hid in Samsung Phones for Nearly a Year

The LANDFALL spyware exploited a Samsung Galaxy zero-day (CVE-2025-21042) for nearly a year, targeting flagship phones via malicious DNG images sent through apps like WhatsApp. The sophisticated ...