0day

3 minute read

Israeli Spyware Graphite Targeted WhatsApp with 0-Click Exploit

Citizen Lab's investigation reveals sophisticated spyware attacks exploiting WhatsApp vulnerabilities, implicating Paragon Solutions. Learn how their research exposed these threats and the implications for digital privacy.

byDeeba Ahmed

March 20, 2025

3 minute read

11 Nation-State Hackers Exploit Unpatched Windows Flaw Since 2017

Microsoft refuses to patch serious Windows shortcut vulnerability abused in global espionage campaigns!

byWaqas

March 19, 2025

4 minute read

March 2025 Patch Tuesday: Microsoft Fixes 57 Vulnerabilities, 7 Zero-Days

Microsoft's March 2025 Patch Tuesday fixes six actively exploited zero-day vulnerabilities, including critical RCE and privilege escalation flaws. Learn how these vulnerabilities impact Windows systems and why immediate patching is essential.

byDeeba Ahmed

March 12, 2025

SonicWall SMA Appliances Exploited in Zero-Day Attacks

3 minute read

Security

SonicWall SMA Appliances Exploited in Zero-Day Attacks

Critical security flaw in SonicWall SMA 1000 appliances (CVE-2025-23006) exploited as a zero-day. Rated CVSS 9.8, patch immediately…

byDeeba Ahmed

January 27, 2025

2 minute read

Critical Windows Zero-Day Alert: No Patch Available Yet for Users

Protect your systems with automated patching and server hardening strategies to defend against vulnerabilities like the NTLM zero-day.…

byUzair Amir

December 9, 2024

How Attackers Use Corrupted Files to Slip Past Security

3 minute read

Security

How Attackers Use Corrupted Files to Slip Past Security

New zero-day attack bypasses antivirus, sandboxes, and spam filters using corrupted files. Learn how ANY.RUN’s sandbox detects and…

byWaqas

December 3, 2024

Russian Hackers Exploit Firefox and Windows Zero-Days to Deploy Backdoor

2 minute read

Russian Hackers Exploit Firefox and Windows 0-Days to Deploy Backdoor

Watch out for the Russian hackers from the infamous RomRom group, also known as Storm-0978, Tropical Scorpius, or UNC2596, and their use of a custom backdoor.

byWaqas

November 27, 2024

3 minute read

Operation Lunar Peek: More Than 2,000 Palo Alto Network Firewalls Hacked

The Shadowserver Foundation reports over 2,000 Palo Alto Networks firewalls have been hacked via two zero-day vulnerabilities: CVE-2024-0012…

byWaqas

November 22, 2024

3 minute read

Microsoft’s November Patch Tuesday Fixes 91 Vulnerabilities, 4 Zero-Days

Microsoft’s November 2024 Patch Tuesday update fixes 91 security vulnerabilities, including four zero-day vulnerabilities. Critical fixes address actively…

byWaqas

November 12, 2024

3 minute read

Lazarus Group Exploits Chrome 0-Day for Crypto with Fake NFT Game

North Korean hackers from Lazarus Group exploited a zero-day vulnerability in Google Chrome to target cryptocurrency investors with…

byDeeba Ahmed

October 24, 2024

The Latest

Israeli Spyware Graphite Targeted WhatsApp with 0-Click Exploit

Rooted Androids 3,000x More Likely to Be Breached, Even iPhones Not Safe

11 Nation-State Hackers Exploit Unpatched Windows Flaw Since 2017

SecPod launches Saner Cloud: A Revolutionary CNAPP For Preventive Cybersecurity

0day

Israeli Spyware Graphite Targeted WhatsApp with 0-Click Exploit

11 Nation-State Hackers Exploit Unpatched Windows Flaw Since 2017

March 2025 Patch Tuesday: Microsoft Fixes 57 Vulnerabilities, 7 Zero-Days

SonicWall SMA Appliances Exploited in Zero-Day Attacks

Critical Windows Zero-Day Alert: No Patch Available Yet for Users

How Attackers Use Corrupted Files to Slip Past Security

Russian Hackers Exploit Firefox and Windows 0-Days to Deploy Backdoor

Operation Lunar Peek: More Than 2,000 Palo Alto Network Firewalls Hacked

Microsoft’s November Patch Tuesday Fixes 91 Vulnerabilities, 4 Zero-Days

Lazarus Group Exploits Chrome 0-Day for Crypto with Fake NFT Game

SecPod launches Saner Cloud: A Revolutionary CNAPP For Preventive Cybersecurity

SpyCloud’s 2025 Identity Exposure Report Reveals the Scale and Hidden Risks of Digital Identity Threats

Knocknoc Raises Seed Funding to Scale Its Just-In-Time Network Access Control Technology

SquareX Launches “Year of Browser Bugs” (YOBB) to Expose Critical Security Blind Spots

Cyver Core Reports 50% Reduction in Pentest Reporting Time with Generative AI