Zero-day vulnerabilities represent the most dangerous class of security flaws because no patches exist at the time of discovery. This section tracks newly disclosed zero-day exploits, active exploitation campaigns, and vendor responses to critical unpatched vulnerabilities.
11 articles
Anthropic’s deployment of the Mythos Preview highlights a significant advancement in AI-enabled cyberattack capabilities, demanding heightened vigilance from CISOs. This threat intelligence report outlines the implications and strategic responses.
Apple has issued a critical patch for a zero-day exploited in the wild across iOS, macOS, and more. CISOs must assess exposure and act swiftly.
Microsoft's February Patch Tuesday resolves 59 CVEs, including six zero-days actively exploited in the wild. CISOs should act quickly.
WhatsApp has quietly deployed a Rust-based media handler and new internal file screening to reduce malware-laden file exploits—posing key lessons for mobile defense.
WatchGuard has patched a critical zero-day in its Firebox firewall allowing unauthenticated RCE. CISOs should act immediately to assess and mitigate risk.
Cisco's Secure Email appliances are under active zero-day exploitation by a China-linked APT. This article outlines critical response measures and threat implications.
Cisco Talos' latest research exposes critical vulnerabilities in Libbiosig, Grassroot DiCoM, and Smallstep step-ca—putting medical and certificate systems at risk.
CVE-2025-55182, a critical deserialization flaw in React Server Components, is now exploited by DPRK and China-linked threat actors. CISO action required.
A newly discovered zero-day in Chrome’s V8 engine is actively exploited in the wild. Google urges immediate patching to secure enterprise environments.
Microsoft’s December Patch Tuesday addresses 57 vulnerabilities, including three zero-days—one of which is actively exploited to hijack Windows systems.
Browse the latest cybersecurity incidents and threat intelligence by topic.
Threat intelligence is the foundation of proactive cybersecurity defense.
View ArticlesArtificial intelligence is reshaping both offensive and defensive cybersecurity.
View ArticlesPhishing remains the most common initial access vector in cyber attacks.
View ArticlesRansomware attacks continue to be one of the most disruptive cyber threats facing organizations worldwide.
View ArticlesAs organizations accelerate cloud adoption, new attack surfaces emerge across AWS, Azure, Google Cloud, and SaaS platforms.
View ArticlesData breaches expose sensitive information and erode customer trust.
View ArticlesMalware continues to evolve with increasingly sophisticated evasion techniques and delivery mechanisms.
View ArticlesEffective vulnerability management is critical for reducing organizational risk.
View Articles