The hackers behind the initial wave of attacks exploiting a zero-day in Microsoft SharePoint servers have so far primarily targeted government organizations, according to researchers as well as news reports.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), in an alert, said it's aware of active exploitation of CVE-2025-53770, which enables unauthenticated access to SharePoint systems and arbitrary code execution over the network.

Zero Day doesn't waste time in Episode 2. The story picks up at full speed, with George Mullen barely able to hold on mentally and politically.

Zero-Day Exploits Cheat Sheet: Definition, Examples & How It Works Your email has been sent Zero-day exploits use unknown vulnerabilities to infiltrate PCs, networks, mobile phones and IoT devices ...

Iran is currently experiencing a major water crisis. The Iranian government has declared an emergency public holiday in Tehran Province as the nation grapples with a severe water shortage and energy crisis compounded by soaring temperatures that have pushed the country's aging infrastructure to its breaking point.

VMware fixed four vulnerabilities in VMware ESXi, Workstation, Fusion, and Tools that were exploited as zero-days during the Pwn2Own Berlin 2025 hacking contest in May 2025.

Google has released an important update for Chrome, fixing several vulnerabilities in new Chrome versions 138.0.7204.157/158 for Windows and macOS and 138.0.7204.157 for Linux. According to Google, one of the vulnerabilities is already being exploited by attacks in the wild.

Google has patched Chrome zero-day CVE-2025-6558, which is being actively exploited in the wild. Users are urged to update now to avoid sandbox escape attacks.