zero-days Archives

Director of the Homeland Security Department’s Cybersecurity and Infrastructure Security Agency Jen Easterly prepares to testify at a House Select Committee on the Chinese Communist Party hearing on Capitol Hill in Washington, DC, on January 31, 2024. (Photo by Julia Nikhinson / AFP)

CISA orders Ivanti devices targeted by Chinese hackers be disconnected

An updated emergency directive includes instructions on how to bring affected devices back online securely.

Feb 1, 2024 By AJ Vicens

From left, the NSA’s Darren Turner, OMB’s Nick Polk and CISA’s Michael Duffy participate in a cybersecurity governance panel at ACT-IAC’s Imagine Nation ELC conference in Hershey, Pa., on Oct. 30, 2023. (Scoop News Group photo)

CISA sees increase in zero-day exploitation, official says

Michael Duffy, associate director for capacity building in CISA’s cybersecurity division, says that global zero-day exploits are “really affecting the federal government networks.”

Nov 3, 2023 By Matt Bracken

Google reveals Spanish IT firm’s links to spyware targeting Chrome, Firefox and Microsoft Defender

Google says it has deployed patches for zero-day vulnerabilities that a Spanish tech company may have used to develop spyware.

Nov 30, 2022 By AJ Vicens

Zero-day exploits have sharply increased in the last year.

Zero-day attacks surged in 2021, Mandiant says

2021 accounted for more than 40% of the zero-day exploits undertaken in the last decade, according to the company.

Apr 22, 2022 By Suzanne Smalley

alert, warning, notification, hack, attack, intrusion, disruption, zero-day, exploit — (Getty Images)

Zero-day exploits found and disclosed hit a record high in 2021, Google Project Zero says

There were 58 total. The good news: Detection and disclosure of zero-day exploits have increased, the research team says.

Apr 19, 2022

Aethon TUG hospital robot — A TUG robot from Aethon delivers supplies at UCSF medical center in San Francisco on April 15, 2021. (Photo by Smith Collection/Gado/Getty Images)

Hospital hallway robots get patches for potentially serious bugs

Five zero-days found in Aethon TUG robots included one that could allow an attacker to control the machines, Cynerio said.

Apr 12, 2022 By Joe Warminsky

developer, software, programmer — (Photo by Matic Zorman/Getty Images)

Project Zero researchers see promising trends in vulnerability fixes

Data from the Google-based team seems to reflect an industry getting faster at fixing bugs and deploying patches.

Feb 10, 2022

NEW YORK, NEW YORK – SEPTEMBER 24: People shop at the Fifth Avenue Apple Store during the launch of Apple’s new iPhone 13 and iPhone 13 Mini on September 24, 2021. (Photo by Spencer Platt/Getty Images)

Likely state-based hackers infected Hong Kong websites to spy on Apple users, Google says

Apple released a patch on Sept. 23.

Nov 12, 2021 By Tim Starks

chrome extension — (Stephen Shankland / Flickr)

Google pushes emergency update for Chrome zero-days, the latest in a hectic year for vulnerabilities

That's a dozen so far this year alone, as zero-days are having a record year everywhere.

Oct 1, 2021 By Tim Starks

Apple iPhone 12 release — The Apple Store on George Street in Sydney, Australia. (James D. Morgan/Getty Images)

Apple patches against alleged NSO Group zero-click exploit used on activists

Apple released its iOS 14.8 update Monday.

Sep 13, 2021 By Tonya Riley