zero-day Archives

Apple discloses first actively exploited zero-day of 2026

The vendor said the memory-corruption defect was exploited to target specific people, but it did not describe the objectives of the attack.

4 days ago By Matt Kapko

A logo sign outside of the headquarters of Ivanti in South Jordan, Utah. (Kristoffer Tripplaar / Alamy Stock Photo)

Fallout from latest Ivanti zero-days spreads to nearly 100 victims

Shadowserver scans have identified 86 compromised instances, and researchers warn multiple threat groups are involved.

Feb 9, 2026 By Matt Kapko

Ivanti’s EPMM is under active attack, thanks to two critical zero-days

Limited attacks occurred prior to Ivanti’s disclosure, followed by mass exploitation by multiple threat groups. More than 1,400 potentially vulnerable instances remain exposed.

Feb 3, 2026 By Matt Kapko

“Move fast and break things” Facebook CEO Mark Zuckerberg onstage at the F8 conference 2014. (Mike Deerkoski via Wikimedia Commons, CC BY 2.0, https://creativecommons.org/licenses/by/2.0/)

We moved fast and broke things. It’s time for a change.

For 20 years, tech has moved fast and broken things. The result: a cybersecurity crisis built on rushed code and vulnerable software. It's time to replace speed-at-all-costs…

Feb 2, 2026 By Saša Zdjelar

Cisco customers hit by fresh wave of zero-day attacks from China-linked APT

Cisco has yet to release a patch for the actively exploited vulnerability, and attacks have been underway since at least late November.

Dec 18, 2025 By Matt Kapko

Microsoft Headquarters — A sign is seen at the Microsoft headquarters on July 3, 2024, in Redmond, Washington. (David Ryder/Getty Images)

Microsoft’s last Patch Tuesday of 2025 addresses 57 defects, including one zero-day

Microsoft closed out the year with 1,139 total defects patched, making it the second-largest year in volume behind 2020, according to Trend Micro.

Dec 9, 2025 By Matt Kapko

Locust Walk with students in fall at University of Pennsylvania in Philadelphia. (Jumping Rocks/Universal Images Group via Getty Images)

University of Pennsylvania joins growing pool of Oracle customers impacted by Clop attacks

The Ivy League school said it was one of almost 100 organizations hit by the simultaneous attacks in August.

Dec 2, 2025 By Matt Kapko

The Washington Post building in Washington. (Andrej Sokolow/Getty Images)

Washington Post confirms data on nearly 10,000 people stolen from its Oracle environment

The newspaper said a “bad actor” contacted the company in late September, prompting an investigation that nearly a month later confirmed the extent of compromise.

Nov 13, 2025 By Matt Kapko

Binary code displayed on a screen reflected in glasses. (Jakub Porzycki/NurPhoto via Getty Images)

Amazon pins Cisco, Citrix zero-day attacks to APT group

The vendors disclosed and patched the defects last summer, but not before advanced attackers exploited the vulnerabilities to likely gain prolonged access for espionage, according to Amazon.

Nov 12, 2025 By Matt Kapko

(Photo by John Smith/VIEWpress/Getty Images)

Microsoft Patch Tuesday addresses 63 defects, including one actively exploited zero-day

Researchers warn that although exploitation of the zero-day is complex, a functional exploit exists in the wild.

Nov 11, 2025 By Matt Kapko