Dark Reading

Microsoft's Zero-Day Legal Threats Spark Backlash

Microsoft is facing an onslaught of criticism from the cybersecurity community after the company said it would seek criminal prosecution against a disgruntled security researcher who published several ...
Bleeping Computer

Google fixes one actively exploited Android zero-day, 124 flaws

Google has released the June 2026 Android security patches to address 124 vulnerabilities, including one zero-day flaw exploited in targeted attacks. Local attackers can exploit the actively abused ...
Design And Reuse

AI-Accelerated Vulnerability Discovery: An Emergency in Software Security. Is Hardware Next?

They now identify vulnerabilities in production software at a speed, scale, and cost efficiency that no human team can match. Anthropic’s Claude Mythos and OpenAI’s GPT-5.5-Cyber are two prominent ...
CRN

Cisco, SonicWall Disclose New Attacks Exploiting Zero-Day Flaws

The two vendors revealed details about the cyberattacks in separate disclosures Wednesday. Zero-day vulnerabilities in Cisco and SonicWall products have been exploited in new cyberattack campaigns, ...
Dark Reading

Apple Patches Zero-Day Flaw Used in 'Sophisticated' Attack

Apple on Aug. 20 patched a zero-day flaw in its ImageIO framework — the latest in a series of zero-day vulnerabilities disclosed by the company this year. The vulnerability, tracked as CVE-2025-43300, ...

Google Says It Found Evidence of Hackers Using AI to Discover a Zero-Day Vulnerability

As AI models continue to get more powerful, it’s not too surprising that some people are trying to use them for crime. The Google Threat Intelligence Group said on Monday that it has identified, for ...
JD Supra

Oracle Zero-Day Exploited by Cl0p

Oracle has confirmed that the threat actor group Cl0p is actively exploiting a zero-day vulnerability in the Oracle E-Business Suite product, versions 12.2.3-12.2.14. On October 4, 2025, Oracle ...
Forbes

Adobe Attacks Underway—Windows And Mac Users Given 72 Hours To Update

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. This voice experience is generated by AI. Learn more. This ...
CSOonline

The zero-day timeline just collapsed. Here’s what security leaders do next

Hackers are now using AI agents to find software flaws 24/7, meaning the old ‘patch and pray’ strategy is dead. The new goal is to limit the damage once an intruder inevitably gets in. A zero-day is ...
Bleeping Computer

New Linux 'Dirty Frag' zero-day gives root on all major distros

A new Linux zero-day exploit, named Dirty Frag, allows local attackers to gain root privileges on most major Linux distributions with a single command. Security researcher Hyunwoo Kim, who disclosed ...
CSOonline

Ransomware group exploited Cisco firewall vulnerability as a zero day, weeks before a patch appeared

Admins have been handed a patching emergency as Amazon reveals that Interlock ransomware started targeting the FMC flaw in January. One of the world’s most active ransomware groups, Interlock, started ...
Tom's Hardware on MSN

Zero-day clock visualizes and quantifies the effects of AI on software security

Zero-Day clock visualizes the effect of AI on software security and predicts that exploits will happen one minute after ...